MAL-2024-1784

See a problem?

Import Source

https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/avalanche_compass_scope/MAL-2024-1784.json

JSON Data

https://api.osv.dev/v1/vulns/MAL-2024-1784

Published

2024-06-25T12:28:51Z

Modified

2024-10-24T01:01:55Z

Summary

Malicious code in avalanche_compass_scope (npm)

Details

-= Per source details. Do not edit below this line.=-

Database specific

{
    "malicious-packages-origins": [
        {
            "import_time": "2024-06-28T02:41:58.604583788Z",
            "versions": [
                "7.3.1"
            ],
            "source": "reversing-labs",
            "id": "RLMA-2024-00380",
            "modified_time": "2024-06-25T12:28:51Z",
            "sha256": "2ae8559754e029d25844bc430fd2cea305f662fcea85725141d42bf94776c600"
        },
        {
            "import_time": "2024-10-24T00:57:33.148124212Z",
            "source": "reversing-labs",
            "id": "RLUA-2024-06182",
            "modified_time": "2024-10-16T12:32:55Z",
            "sha256": "32231a17c32c7c098267d2f0941cf9d5995c94c2c730fd8fc18677d260e62ebd"
        }
    ]
}

References

Credits

- ReversingLabs - FINDER
- - https://www.reversinglabs.com

Affected packages

npm / avalanche_compass_scope

Package

Name: avalanche_compass_scope; View open source insights on deps.dev
Purl: pkg:npm/avalanche_compass_scope

Affected ranges

Affected versions

7.*

7.3.1

Database specific

source

"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/avalanche_compass_scope/MAL-2024-1784.json"