MAL-2024-5514
See a problem?- Import Source
- https://github.com/ossf/malicious-packages/blob/main/osv/malicious/pypi/pipcryptographylibaryv2/MAL-2024-5514.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/MAL-2024-5514
- Aliases
-
- SNYK-PYTHON-PIPCRYPTOGRAPHYLIBARYV2-5932175
- Published
- 2024-06-25T13:38:26Z
- Modified
- 2024-10-24T01:01:59Z
- Summary
- Malicious code in pipcryptographylibaryv2 (PyPI)
- Details
-
-= Per source details. Do not edit below this line.=-
- Database specific
{ "malicious-packages-origins": [ { "source": "reversing-labs", "id": "RLMA-2024-04296", "import_time": "2024-06-28T02:49:43.584058778Z", "modified_time": "2024-06-25T13:38:26Z", "sha256": "c26ff98f3486a12aa58c245cf757c14aafe9fd28854901e99e2959cc78a4690e", "versions": [ "1.2.0", "1.0.0" ] }, { "id": "RLUA-2024-08724", "import_time": "2024-10-24T00:59:37.752671725Z", "modified_time": "2024-10-16T14:45:49Z", "sha256": "dfaf43abc6a6f0e64f991903bb585764aaf3389baaac44a0ff8b5ef5cccfa695", "source": "reversing-labs" } ] }- References
-
- https://security.snyk.io/vuln/SNYK-PYTHON-PIPCRYPTOGRAPHYLIBARYV2-5932175
- https://blog.virustotal.com/2023/06/inside-of-wasps-nest-deep-dive-into.html
- https://medium.com/checkmarx-security/the-evolutionary-tale-of-a-persistent-python-threat-d19196d4ed15
- https://research.jfrog.com/malicious-packages/
- Credits
-
-
- ReversingLabs - FINDER
-
Affected packages
PyPI / pipcryptographylibaryv2
Package
- Name
- pipcryptographylibaryv2
- View open source insights on deps.dev
- Purl
- pkg:pypi/pipcryptographylibaryv2