MAL-2024-5917

See a problem?

Import Source

https://github.com/ossf/malicious-packages/blob/main/osv/malicious/pypi/requierement/MAL-2024-5917.json

JSON Data

https://api.test.osv.dev/v1/vulns/MAL-2024-5917

Aliases

SNYK-PYTHON-REQUIEREMENT-6513605

Published

2024-06-25T13:41:50Z

Modified

2024-10-24T01:01:59Z

Summary

Malicious code in requierement (PyPI)

Details

-= Per source details. Do not edit below this line.=-

Database specific

{
    "malicious-packages-origins": [
        {
            "id": "RLMA-2024-04718",
            "source": "reversing-labs",
            "versions": [
                "1.0.0"
            ],
            "import_time": "2024-06-28T02:50:33.689246697Z",
            "sha256": "28bfe7d0fb954a3951f9b2e1ec89c95316f01c5ca66cd03a0c3ee7811728b649",
            "modified_time": "2024-06-25T13:41:50Z"
        },
        {
            "id": "RLUA-2024-09177",
            "source": "reversing-labs",
            "sha256": "bed0f36168c3e1c93603f818652d380d47f2aa66e3d6da975df6c3a486e2b74d",
            "import_time": "2024-10-24T01:00:05.420095759Z",
            "modified_time": "2024-10-16T14:50:26Z"
        }
    ]
}

References

Credits

- ReversingLabs - FINDER
- - https://www.reversinglabs.com

Affected packages

PyPI / requierement

Package

Name: requierement; View open source insights on deps.dev
Purl: pkg:pypi/requierement

Affected ranges

Affected versions

1.*

1.0.0