MAL-2024-2272

See a problem?

Import Source

https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/easyfetchgoogle/MAL-2024-2272.json

JSON Data

https://api.osv.dev/v1/vulns/MAL-2024-2272

Published

2024-06-25T12:40:50Z

Modified

2024-10-24T01:01:56Z

Summary

Malicious code in easyfetchgoogle (npm)

Details

-= Per source details. Do not edit below this line.=-

Database specific

{
    "malicious-packages-origins": [
        {
            "modified_time": "2024-06-25T12:40:50Z",
            "source": "reversing-labs",
            "id": "RLMA-2024-00923",
            "sha256": "f913dad603db4759602573e1ca2ee1db8de6d9824f05d9d20e4918e900558854",
            "import_time": "2024-06-28T02:43:04.134933728Z",
            "versions": [
                "7.2.2"
            ]
        },
        {
            "modified_time": "2024-10-16T12:49:20Z",
            "source": "reversing-labs",
            "id": "RLUA-2024-06466",
            "sha256": "a7f779a6bd59eaccc3c29b07de020c441f36b42bcd59094e5b3b5f87dd0d8c04",
            "import_time": "2024-10-24T00:57:45.378798996Z"
        }
    ]
}

References

Credits

- ReversingLabs - FINDER
- - https://www.reversinglabs.com

Affected packages

npm / easyfetchgoogle

Package

Name: easyfetchgoogle; View open source insights on deps.dev
Purl: pkg:npm/easyfetchgoogle

Affected ranges

Affected versions

7.*

7.2.2