MAL-2024-6291

See a problem?

Import Source

https://github.com/ossf/malicious-packages/blob/main/osv/malicious/rubygems/a14z6ch-elapsed-days/MAL-2024-6291.json

JSON Data

https://api.osv.dev/v1/vulns/MAL-2024-6291

Published

2024-06-25T13:44:56Z

Modified

2024-10-24T01:02:00Z

Summary

Malicious code in a14z6ch-elapsed-days (RubyGems)

Details

-= Per source details. Do not edit below this line.=-

Database specific

{
    "malicious-packages-origins": [
        {
            "sha256": "17b0ecba0a2daf5f1f477532825c684f4a9cd1862408d697c8a68aa56983f8ba",
            "import_time": "2024-06-28T02:51:20.212362811Z",
            "versions": [
                "0.0.5"
            ],
            "id": "RLMA-2024-05098",
            "source": "reversing-labs",
            "modified_time": "2024-06-25T13:44:56Z"
        },
        {
            "sha256": "0c580691035aea812459b2f790e2440e0d84b1b601296bb8cd16ef076f8ad301",
            "import_time": "2024-10-24T01:00:31.064770094Z",
            "id": "RLUA-2024-09617",
            "source": "reversing-labs",
            "modified_time": "2024-10-16T14:55:07Z"
        }
    ]
}

References

https://blog.reversinglabs.com/blog/mining-for-malicious-ruby-gems

Credits

- ReversingLabs - FINDER
- - https://www.reversinglabs.com

Affected packages

RubyGems / a14z6ch-elapsed-days

Package

Name: a14z6ch-elapsed-days
Purl: pkg:gem/a14z6ch-elapsed-days

Affected ranges

Affected versions

0.*

0.0.5