MAL-2024-6684

Import Source

https://github.com/ossf/malicious-packages/blob/main/osv/malicious/rubygems/arproxy-plugin-mysql-casual_log/MAL-2024-6684.json

JSON Data

https://api.test.osv.dev/v1/vulns/MAL-2024-6684

Published

2024-06-25T13:48:57Z

Modified

2024-10-24T01:02:00Z

Summary

Malicious code in arproxy-plugin-mysql-casual_log (RubyGems)

Details

-= Per source details. Do not edit below this line.=-

Database specific

{
    "malicious-packages-origins": [
        {
            "sha256": "70ba2099f505f8bc832f486549691f3972c883eed2d44f8a9656ddfa1598c288",
            "import_time": "2024-06-28T02:52:06.740720863Z",
            "source": "reversing-labs",
            "id": "RLMA-2024-05490",
            "versions": [
                "0.1.0"
            ],
            "modified_time": "2024-06-25T13:48:57Z"
        },
        {
            "import_time": "2024-10-24T01:00:59.856227694Z",
            "source": "reversing-labs",
            "id": "RLUA-2024-10009",
            "sha256": "50c44e84e47bcdfaff3a497f2f1b7c388dd33b30317025c1b665519967ea7d22",
            "modified_time": "2024-10-16T15:00:25Z"
        }
    ]
}

References

https://blog.reversinglabs.com/blog/mining-for-malicious-ruby-gems

Credits

- ReversingLabs - FINDER
- - https://www.reversinglabs.com

Affected packages

RubyGems / arproxy-plugin-mysql-casual_log

Package

Name: arproxy-plugin-mysql-casual_log
Purl: pkg:gem/arproxy-plugin-mysql-casual_log

Affected ranges

Affected versions

0.*

0.1.0