MAL-2024-4708

See a problem?
Import Source
https://github.com/ossf/malicious-packages/blob/main/osv/malicious/nuget/zendesk-api/MAL-2024-4708.json
JSON Data
https://api.osv.dev/v1/vulns/MAL-2024-4708
Published
2024-06-25T13:31:54Z
Modified
2024-10-24T01:01:57Z
Summary
Malicious code in Zendesk-Api (NuGet)
Details

-= Per source details. Do not edit below this line.=-

Database specific 
{
    "malicious-packages-origins": [
        {
            "id": "RLMA-2024-03490",
            "modified_time": "2024-06-25T13:31:54Z",
            "source": "reversing-labs",
            "import_time": "2024-06-28T02:48:09.405152086Z",
            "versions": [
                "1.24.1",
                "1.24.29",
                "1.24.5",
                "1.24.10",
                "1.24.32",
                "1.24.26",
                "1.24.43",
                "1.24.39",
                "1.24.11",
                "1.24.46",
                "1.24.30",
                "1.24.49",
                "1.24.54",
                "1.24.63",
                "1.24.14",
                "1.24.41",
                "1.24.40",
                "1.24.42",
                "1.24.35",
                "1.24.16",
                "1.24.62",
                "1.24.23",
                "1.24.13",
                "1.24.22",
                "1.24.51",
                "1.24.50",
                "1.24.59",
                "1.24.38",
                "1.24.45",
                "1.24.15",
                "1.24.53",
                "12.57.8",
                "1.24.36",
                "1.24.34",
                "1.24.12",
                "1.24.20",
                "1.24.44",
                "12.58.0",
                "1.24.2",
                "12.57.9",
                "1.24.52",
                "1.24.61",
                "1.24.4",
                "1.24.21",
                "1.24.60",
                "1.24.3",
                "1.24.37",
                "1.24.7",
                "1.24.55",
                "1.24.8",
                "1.24.47",
                "1.24.48",
                "1.24.19",
                "1.24.6",
                "1.24.66",
                "1.24.56",
                "1.24.31",
                "1.24.58",
                "1.24.24",
                "1.24.65",
                "1.24.17",
                "1.24.28",
                "1.24.64",
                "1.24.57",
                "1.24.25",
                "1.24.9",
                "1.24.18",
                "1.24.33",
                "1.24.27"
            ],
            "sha256": "3bdd91b2117bf106db78e08bac577d2932b3f7d9b04d3f62fb00b8e99747244d"
        },
        {
            "id": "RLUA-2024-07756",
            "modified_time": "2024-10-16T13:48:49Z",
            "source": "reversing-labs",
            "import_time": "2024-10-24T00:58:43.423835688Z",
            "sha256": "be616f039f7b06b114a2c65dbc79824e0f0c3faf9a29c0cc4b504504609fc611"
        }
    ]
}
References
Credits

Affected packages

NuGet / Zendesk-Api

Package

Name
Zendesk-Api
View open source insights on deps.dev
Purl
pkg:nuget/Zendesk-Api

Affected ranges

Affected versions

1.*

1.24.1
1.24.2
1.24.3
1.24.4
1.24.5
1.24.6
1.24.7
1.24.8
1.24.9
1.24.10
1.24.11
1.24.12
1.24.13
1.24.14
1.24.15
1.24.16
1.24.17
1.24.18
1.24.19
1.24.20
1.24.21
1.24.22
1.24.23
1.24.24
1.24.25
1.24.26
1.24.27
1.24.28
1.24.29
1.24.30
1.24.31
1.24.32
1.24.33
1.24.34
1.24.35
1.24.36
1.24.37
1.24.38
1.24.39
1.24.40
1.24.41
1.24.42
1.24.43
1.24.44
1.24.45
1.24.46
1.24.47
1.24.48
1.24.49
1.24.50
1.24.51
1.24.52
1.24.53
1.24.54
1.24.55
1.24.56
1.24.57
1.24.58
1.24.59
1.24.60
1.24.61
1.24.62
1.24.63
1.24.64
1.24.65
1.24.66

12.*

12.57.8
12.57.9
12.58.0

Database specific

source

"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/nuget/zendesk-api/MAL-2024-4708.json"