MAL-2024-2456

See a problem?

Import Source

https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/hearsay-design-system/MAL-2024-2456.json

JSON Data

https://api.osv.dev/v1/vulns/MAL-2024-2456

Published

2024-06-25T12:45:15Z

Modified

2024-10-24T01:01:56Z

Summary

Malicious code in hearsay-design-system (npm)

Details

-= Per source details. Do not edit below this line.=-

Database specific

{
    "malicious-packages-origins": [
        {
            "versions": [
                "1.999.0",
                "1.1.0",
                "1.2.0"
            ],
            "modified_time": "2024-06-25T12:45:15Z",
            "source": "reversing-labs",
            "sha256": "7a4886f04f6ef5466cfb88dac21354a4fc33c2277c903be96050cbd64a930e2f",
            "id": "RLMA-2024-01119",
            "import_time": "2024-06-28T02:43:27.612945616Z"
        },
        {
            "modified_time": "2024-10-16T12:56:10Z",
            "source": "reversing-labs",
            "sha256": "2087b320536c2859ad0cc85e5608995ad369dfb1c2527801afd7269f139e5bbf",
            "id": "RLUA-2024-06680",
            "import_time": "2024-10-24T00:57:55.514097556Z"
        }
    ]
}

References

Credits

- ReversingLabs - FINDER
- - https://www.reversinglabs.com

Affected packages

npm / hearsay-design-system

Package

Name: hearsay-design-system; View open source insights on deps.dev
Purl: pkg:npm/hearsay-design-system

Affected ranges

Affected versions

1.*

1.1.0

1.2.0

1.999.0