MAL-2024-4916

See a problem?

Import Source

https://github.com/ossf/malicious-packages/blob/main/osv/malicious/pypi/color-fade/MAL-2024-4916.json

JSON Data

https://api.osv.dev/v1/vulns/MAL-2024-4916

Published

2024-06-25T13:33:36Z

Modified

2024-10-24T01:01:58Z

Summary

Malicious code in color-fade (PyPI)

Details

-= Per source details. Do not edit below this line.=-

Database specific

{
    "malicious-packages-origins": [
        {
            "sha256": "02e61cefb30a1a397290be1c42bbf7560e56b900095c48beef57b49b39fd38e7",
            "import_time": "2024-06-28T02:48:32.908486132Z",
            "versions": [
                "0.0.0"
            ],
            "id": "RLMA-2024-03696",
            "source": "reversing-labs",
            "modified_time": "2024-06-25T13:33:36Z"
        },
        {
            "sha256": "2d9d455a1a4e9b6aecef74853fc3bb6d5e39524d7c33dd065a530610785d303a",
            "import_time": "2024-10-24T00:58:56.39228737Z",
            "id": "RLUA-2024-07987",
            "source": "reversing-labs",
            "modified_time": "2024-10-16T14:38:08Z"
        }
    ]
}

References

https://research.jfrog.com/malicious-packages/

Credits

- ReversingLabs - FINDER
- - https://www.reversinglabs.com

Affected packages

PyPI / color-fade

Package

Name: color-fade; View open source insights on deps.dev
Purl: pkg:pypi/color-fade

Affected ranges

Affected versions

0.*

0.0.0