MAL-2024-12278

See a problem?
Import Source
https://github.com/ossf/malicious-packages/blob/main/osv/malicious/pypi/gltest/MAL-2024-12278.json
JSON Data
https://api.osv.dev/v1/vulns/MAL-2024-12278
Published
2024-08-23T22:55:41Z
Modified
2026-03-17T23:01:43.736506Z
Summary
Malicious code in gltest (PyPI)
Details

-= Per source details. Do not edit below this line.=-

Source: kam193 (538a0e3540a764042a57930b8729d61b05747d057875504da316d6ee14bf91fd)

Packages that might be part of testing for pentesting / malicious activity / joy, with suspicious activity that does not present any real harm.


Category: PROBABLY_PENTEST - Packages looking like typical pentest packages, but also anything that looks like testing, exploring pre-prepared kits, research & co, with clearly low-harm possibilities.

Campaign: GENERIC-simple-tests

Reasons (based on the campaign):

  • The package overrides the install command in setup.py to execute malicious code during installation.
Database specific
{
    "malicious-packages-origins": [
        {
            "id": "pypi/GENERIC-simple-tests/gltest",
            "modified_time": "2024-08-23T22:55:41Z",
            "import_time": "2025-12-02T22:30:56.061213267Z",
            "sha256": "953fa9f478f5d4ee25d85fefe83ab76bc24bc378127c56fee2486e89ef1b4248",
            "ranges": [
                {
                    "type": "ECOSYSTEM",
                    "events": [
                        {
                            "introduced": "0"
                        }
                    ]
                }
            ],
            "source": "kam193"
        },
        {
            "id": "pypi/GENERIC-simple-tests/gltest",
            "modified_time": "2024-08-23T22:55:41Z",
            "import_time": "2025-12-02T23:07:19.252002987Z",
            "sha256": "538a0e3540a764042a57930b8729d61b05747d057875504da316d6ee14bf91fd",
            "ranges": [
                {
                    "type": "ECOSYSTEM",
                    "events": [
                        {
                            "introduced": "0"
                        }
                    ]
                }
            ],
            "source": "kam193"
        },
        {
            "versions": [
                "2.0"
            ],
            "id": "pypi/GENERIC-simple-tests/gltest",
            "modified_time": "2024-08-23T22:55:41Z",
            "import_time": "2025-12-10T21:38:58.394328285Z",
            "sha256": "c2449c1b04e3cd301e2d2df4d2862ee66ed14b77e459eb1b31c73b1688ca68aa",
            "source": "kam193"
        },
        {
            "versions": [
                "2.0"
            ],
            "id": "pypi/GENERIC-simple-tests/gltest",
            "modified_time": "2026-02-08T21:26:46.491651Z",
            "import_time": "2026-02-08T21:42:53.530543802Z",
            "sha256": "7d3ef862309a888264d720acde53792700ab5b4c6c8f0690e69a502d8e833ad5",
            "source": "kam193"
        },
        {
            "versions": [
                "2.0"
            ],
            "id": "pypi/GENERIC-simple-tests/gltest",
            "modified_time": "2026-02-08T21:26:46.491651Z",
            "import_time": "2026-03-17T22:46:38.480723754Z",
            "sha256": "7c587be8bc908391a1dbccc0a63e24eabe2314692dcf06ffb705ee1d1714d358",
            "source": "kam193"
        }
    ]
}
References
Credits

Affected packages

PyPI / gltest

Package

Affected ranges

Affected versions

2.*
2.0

Database specific

source
"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/pypi/gltest/MAL-2024-12278.json"