MAL-2024-6454

See a problem?

Import Source

https://github.com/ossf/malicious-packages/blob/main/osv/malicious/rubygems/activeadmin_logs/MAL-2024-6454.json

JSON Data

https://api.test.osv.dev/v1/vulns/MAL-2024-6454

Published

2024-06-25T13:46:42Z

Modified

2024-10-24T01:02:00Z

Summary

Malicious code in activeadmin_logs (RubyGems)

Details

-= Per source details. Do not edit below this line.=-

Database specific

{
    "malicious-packages-origins": [
        {
            "id": "RLMA-2024-05260",
            "sha256": "ceab1f7ac56336b5a3b78576e5461e7cbf70fbc37676375b853d0a8af05b1ec3",
            "modified_time": "2024-06-25T13:46:42Z",
            "import_time": "2024-06-28T02:51:39.543768584Z",
            "versions": [
                "0.0.1"
            ],
            "source": "reversing-labs"
        },
        {
            "id": "RLUA-2024-09779",
            "sha256": "0373db31bf7f5ed7e0c740aac4b05c9228dd19be0fb1f1ab6443285bffba43da",
            "modified_time": "2024-10-16T14:57:21Z",
            "import_time": "2024-10-24T01:00:43.178503033Z",
            "source": "reversing-labs"
        }
    ]
}

References

https://blog.reversinglabs.com/blog/mining-for-malicious-ruby-gems

Credits

- ReversingLabs - FINDER
- - https://www.reversinglabs.com

Affected packages

RubyGems / activeadmin_logs

Package

Name: activeadmin_logs
Purl: pkg:gem/activeadmin_logs

Affected ranges

Affected versions

0.*

0.0.1