MAL-2024-11369

See a problem?
Import Source
https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/iherb-react-environment/MAL-2024-11369.json
JSON Data
https://api.osv.dev/v1/vulns/MAL-2024-11369
Published
2024-12-09T01:35:12Z
Modified
2025-05-22T14:07:47Z
Summary
Malicious code in iherb-react-environment (npm)
Details

-= Per source details. Do not edit below this line.=-

Database specific 
{
    "malicious-packages-origins": [
        {
            "sha256": "fbe70c5125673d9b47eb26506e6bcfeac10e58b08fc01a64b42d08dbdbf86d92",
            "source": "reversing-labs",
            "modified_time": "2024-12-09T01:35:12Z",
            "id": "RLMA-2024-10611",
            "versions": [
                "99.9999.6"
            ],
            "import_time": "2024-12-09T14:38:24.793505015Z"
        },
        {
            "sha256": "342d56fcff052be3b8d87f088c1dd4958617551216081602545f730bfd8b1ab0",
            "source": "reversing-labs",
            "modified_time": "2025-05-22T12:46:46Z",
            "id": "RLUA-2025-02805",
            "versions": [
                "99.9999.5"
            ],
            "import_time": "2025-05-22T14:07:13.523572238Z"
        }
    ]
}
References
Credits

Affected packages

npm / iherb-react-environment

Package

Name
iherb-react-environment
View open source insights on deps.dev
Purl
pkg:npm/iherb-react-environment

Affected ranges

Affected versions

99.*
99.9999.5
99.9999.6

Database specific

source 
"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/iherb-react-environment/MAL-2024-11369.json"