MAL-2024-5186

See a problem?
Import Source
https://github.com/ossf/malicious-packages/blob/main/osv/malicious/pypi/gorilla2/MAL-2024-5186.json
JSON Data
https://api.test.osv.dev/v1/vulns/MAL-2024-5186
Published
2024-06-25T13:35:47Z
Modified
2024-10-24T01:01:58Z
Summary
Malicious code in gorilla2 (PyPI)
Details

-= Per source details. Do not edit below this line.=-

Database specific
{
    "malicious-packages-origins": [
        {
            "sha256": "c39b597a51ba6cb85a1edf1b5f5ec1b27ef8981067a73c83779ef43b17f404c3",
            "import_time": "2024-06-28T02:49:04.557054129Z",
            "versions": [
                "3.4.0",
                "0.5.8"
            ],
            "id": "RLMA-2024-03968",
            "source": "reversing-labs",
            "modified_time": "2024-06-25T13:35:47Z"
        },
        {
            "sha256": "aad1ec09c9535dcc6e9c9de1a8b52b786945ded63a0a444fbc9c3c6fdad8b323",
            "import_time": "2024-10-24T00:59:15.400371415Z",
            "id": "RLUA-2024-08326",
            "source": "reversing-labs",
            "modified_time": "2024-10-16T14:41:43Z"
        }
    ]
}
References
Credits

Affected packages

PyPI / gorilla2

Package

Affected ranges

Affected versions

0.*

0.5.8

3.*

3.4.0