MAL-2024-6054

See a problem?

Import Source

https://github.com/ossf/malicious-packages/blob/main/osv/malicious/pypi/swiftypy/MAL-2024-6054.json

JSON Data

https://api.test.osv.dev/v1/vulns/MAL-2024-6054

Published

2024-06-25T13:42:56Z

Modified

2024-10-24T01:01:59Z

Summary

Malicious code in swiftypy (PyPI)

Details

-= Per source details. Do not edit below this line.=-

Database specific

{
    "malicious-packages-origins": [
        {
            "sha256": "b18e72803a32d97761bf1ebcc9a2923113f7e4e49d6b32fab86531d91e00f58a",
            "import_time": "2024-06-28T02:50:50.652218816Z",
            "versions": [
                "2.1",
                "3.1",
                "8.2",
                "5.1",
                "4.1",
                "8.1",
                "7.1"
            ],
            "id": "RLMA-2024-04857",
            "source": "reversing-labs",
            "modified_time": "2024-06-25T13:42:56Z"
        },
        {
            "sha256": "6023409389cf904e9c87e79cf5b26e0c65dddf2b209731b25f7ef0f24527683e",
            "import_time": "2024-10-24T01:00:14.419188474Z",
            "id": "RLUA-2024-09325",
            "source": "reversing-labs",
            "modified_time": "2024-10-16T14:51:58Z"
        }
    ]
}

References

Credits

- ReversingLabs - FINDER
- - https://www.reversinglabs.com

Affected packages

PyPI / swiftypy

Package

Name: swiftypy; View open source insights on deps.dev
Purl: pkg:pypi/swiftypy

Affected ranges

Affected versions

2.*

2.1

3.*

3.1

4.*

4.1

5.*

5.1

7.*

7.1

8.*

8.1

8.2