MAL-2024-5278

See a problem?

Import Source

https://github.com/ossf/malicious-packages/blob/main/osv/malicious/pypi/javapatch/MAL-2024-5278.json

JSON Data

https://api.test.osv.dev/v1/vulns/MAL-2024-5278

Published

2024-06-25T13:36:33Z

Modified

2024-10-24T01:01:58Z

Summary

Malicious code in javapatch (PyPI)

Details

-= Per source details. Do not edit below this line.=-

Database specific

{
    "malicious-packages-origins": [
        {
            "sha256": "48318bd52e65070da66e5572b8f9d923c638e837f77d8cdddb04911165d86b66",
            "import_time": "2024-06-28T02:49:15.9622723Z",
            "versions": [
                "0.6",
                "0.7"
            ],
            "id": "RLMA-2024-04060",
            "source": "reversing-labs",
            "modified_time": "2024-06-25T13:36:33Z"
        },
        {
            "sha256": "6549c8aed4f77ca3af65b2aedb279a39583036e70e18af2dd82ceefd6ee77534",
            "import_time": "2024-10-24T00:59:21.611797337Z",
            "id": "RLUA-2024-08420",
            "source": "reversing-labs",
            "modified_time": "2024-10-16T14:42:43Z"
        }
    ]
}

References

Credits

- ReversingLabs - FINDER
- - https://www.reversinglabs.com

Affected packages

PyPI / javapatch

Package

Name: javapatch; View open source insights on deps.dev
Purl: pkg:pypi/javapatch

Affected ranges

Affected versions

0.*

0.6

0.7