MAL-2024-6785

Import Source

https://github.com/ossf/malicious-packages/blob/main/osv/malicious/rubygems/blinkist_airbrake-scrubber/MAL-2024-6785.json

JSON Data

https://api.osv.dev/v1/vulns/MAL-2024-6785

Published

2024-06-25T13:49:50Z

Modified

2024-10-24T01:02:00Z

Summary

Malicious code in blinkist_airbrake-scrubber (RubyGems)

Details

-= Per source details. Do not edit below this line.=-

Database specific

{
    "malicious-packages-origins": [
        {
            "sha256": "92b4a6f2dad2416e66eb5678da8da0bd935c0204f9511fb5bb8fccbf87595e2e",
            "import_time": "2024-06-28T02:52:18.838383574Z",
            "versions": [
                "4.1.1"
            ],
            "id": "RLMA-2024-05591",
            "source": "reversing-labs",
            "modified_time": "2024-06-25T13:49:50Z"
        },
        {
            "sha256": "e8491b4d808d0a25ad1125a6de3e8db380f07e1d5e2f5310e8069e594d0cffee",
            "import_time": "2024-10-24T01:01:07.292741347Z",
            "id": "RLUA-2024-10110",
            "source": "reversing-labs",
            "modified_time": "2024-10-16T15:01:45Z"
        }
    ]
}

References

https://blog.reversinglabs.com/blog/mining-for-malicious-ruby-gems

Credits

- ReversingLabs - FINDER
- - https://www.reversinglabs.com

Affected packages

RubyGems / blinkist_airbrake-scrubber

Package

Name: blinkist_airbrake-scrubber
Purl: pkg:gem/blinkist_airbrake-scrubber

Affected ranges

Affected versions

4.*

4.1.1