MAL-2024-5680

See a problem?

Import Source

https://github.com/ossf/malicious-packages/blob/main/osv/malicious/pypi/pycripto/MAL-2024-5680.json

JSON Data

https://api.test.osv.dev/v1/vulns/MAL-2024-5680

Published

2024-06-25T13:39:47Z

Modified

2024-10-24T01:01:59Z

Summary

Malicious code in pycripto (PyPI)

Details

-= Per source details. Do not edit below this line.=-

Database specific

{
    "malicious-packages-origins": [
        {
            "sha256": "b1d7203e43d0c1e67aa501e171e53923ad25c094e3e44788933beb5713348fc9",
            "import_time": "2024-06-28T02:50:03.18329951Z",
            "versions": [
                "0.2.0",
                "0.6.0",
                "0.1.0",
                "0.7.0",
                "0.5.0",
                "0.4.0"
            ],
            "id": "RLMA-2024-04463",
            "source": "reversing-labs",
            "modified_time": "2024-06-25T13:39:47Z"
        },
        {
            "sha256": "e11adf5263dffae4c98adb1e1bee71f1523ed3d62dc842d43a93a9226ae7f2a0",
            "import_time": "2024-10-24T00:59:49.326899787Z",
            "versions": [
                "0.3.0"
            ],
            "id": "RLUA-2024-08900",
            "source": "reversing-labs",
            "modified_time": "2024-10-16T14:47:38Z"
        }
    ]
}

References

Credits

- ReversingLabs - FINDER
- - https://www.reversinglabs.com

Affected packages

PyPI / pycripto

Package

Name: pycripto; View open source insights on deps.dev
Purl: pkg:pypi/pycripto

Affected ranges

Affected versions

0.*

0.1.0

0.2.0

0.3.0

0.4.0

0.5.0

0.6.0

0.7.0