MAL-2023-8566

See a problem?
Import Source
https://github.com/ossf/malicious-packages/blob/main/osv/malicious/pypi/kokokoako/MAL-2023-8566.json
JSON Data
https://api.osv.dev/v1/vulns/MAL-2023-8566
Published
2023-09-26T00:00:00Z
Modified
2023-10-15T10:12:58Z
Summary
Malicious code in kokokoako (PyPI)
Details

-= Per source details. Do not edit below this line.=-

Source: checkmarx (037e7b78b81b8740ce2627e91bec2d913cb5ef310bf3d7a80046fee57dd42162)

Malicious packages campaign targeting developers, payload is hidden using Steganography, exfiltrate host information

References
Credits

Affected packages

PyPI / kokokoako

Package

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected