MAL-2024-4490

See a problem?

Import Source

https://github.com/ossf/malicious-packages/blob/main/osv/malicious/nuget/fluentmail.smtp/MAL-2024-4490.json

JSON Data

https://api.osv.dev/v1/vulns/MAL-2024-4490

Published

2024-06-25T13:29:20Z

Modified

2024-10-24T01:01:57Z

Summary

Malicious code in Fluentmail.Smtp (NuGet)

Details

-= Per source details. Do not edit below this line.=-

Database specific

{
    "malicious-packages-origins": [
        {
            "source": "reversing-labs",
            "id": "RLMA-2024-03280",
            "modified_time": "2024-06-25T13:29:20Z",
            "versions": [
                "1.0.48",
                "1.0.23",
                "1.0.17",
                "1.0.43",
                "1.0.25",
                "1.0.37",
                "1.0.29",
                "1.0.3",
                "1.0.53",
                "1.0.33",
                "1.0.38",
                "1.0.30",
                "1.0.34",
                "1.0.54",
                "1.0.15",
                "1.0.60",
                "1.0.47",
                "1.0.24",
                "4.5.78",
                "1.0.20",
                "1.0.5",
                "1.0.44",
                "1.0.2",
                "1.0.16",
                "1.0.45",
                "1.0.50",
                "1.0.56",
                "1.0.61",
                "1.0.18",
                "1.0.8",
                "1.0.59",
                "1.0.22",
                "1.0.28",
                "1.0.55",
                "1.0.27",
                "1.0.35",
                "1.0.51",
                "1.0.12",
                "1.0.21",
                "1.0.40",
                "1.0.36",
                "1.0.46",
                "1.0.58",
                "1.0.10",
                "1.0.26",
                "1.0.42",
                "1.0.19",
                "1.0.32",
                "1.0.52",
                "1.0.7",
                "1.0.41",
                "1.0.57",
                "1.0.49",
                "1.0.31",
                "1.0.39",
                "1.0.4",
                "1.0.6",
                "1.0.9",
                "1.0.11",
                "1.0.13",
                "1.0.14"
            ],
            "import_time": "2024-06-28T02:47:44.29711032Z",
            "sha256": "e4c0f0a0cc07eaa7223d1090a96190068651e41cef2aa4537600c078c71e585a"
        },
        {
            "source": "reversing-labs",
            "id": "RLUA-2024-07664",
            "modified_time": "2024-10-16T13:47:49Z",
            "import_time": "2024-10-24T00:58:37.377802939Z",
            "sha256": "a5fbc759e03beb61262ef615be5d2497d9fce491b144f8c2eea87d25e3524ffb"
        }
    ]
}

References

https://www.reversinglabs.com/blog/malicious-nuget-campaign-uses-homoglyphs-and-il-weaving-to-fool-devs

Credits

- ReversingLabs - FINDER
- - https://www.reversinglabs.com

Affected packages

NuGet / Fluentmail.Smtp

Package

Name: Fluentmail.Smtp; View open source insights on deps.dev
Purl: pkg:nuget/Fluentmail.Smtp

Affected ranges

Affected versions

1.*

1.0.2

1.0.3

1.0.4

1.0.5

1.0.6

1.0.7

1.0.8

1.0.9

1.0.10

1.0.11

1.0.12

1.0.13

1.0.14

1.0.15

1.0.16

1.0.17

1.0.18

1.0.19

1.0.20

1.0.21

1.0.22

1.0.23

1.0.24

1.0.25

1.0.26

1.0.27

1.0.28

1.0.29

1.0.30

1.0.31

1.0.32

1.0.33

1.0.34

1.0.35

1.0.36

1.0.37

1.0.38

1.0.39

1.0.40

1.0.41

1.0.42

1.0.43

1.0.44

1.0.45

1.0.46

1.0.47

1.0.48

1.0.49

1.0.50

1.0.51

1.0.52

1.0.53

1.0.54

1.0.55

1.0.56

1.0.57

1.0.58

1.0.59

1.0.60

1.0.61

4.*

4.5.78