MAL-2025-191891

See a problem?

Import Source

https://github.com/ossf/malicious-packages/blob/main/osv/malicious/pypi/tensorflows/MAL-2025-191891.json

JSON Data

https://api.osv.dev/v1/vulns/MAL-2025-191891

Published

2025-05-26T16:56:04Z

Modified

2025-12-31T02:55:12.931384Z

Summary

Malicious code in tensorflows (PyPI)

Details

-= Per source details. Do not edit below this line.=-

Source: kam193 (e08c37ae45b3a5d5a85a5555ded262e154d91f563636cb5b149176e1aaf12fa7)

Clearly typosquatting packages, but no known malicious parts.

Category: PROBABLY_PENTEST - Packages looking like typical pentest packages, but also anything that looks like testing, exploring pre-prepared kits, research & co, with clearly low-harm possibilities.

Campaign: 2025-05- yesyesyes

Reasons (based on the campaign):

typosquatting

Database specific

{
    "malicious-packages-origins": [
        {
            "source": "kam193",
            "modified_time": "2025-05-26T16:56:04Z",
            "sha256": "d47039abe1931b7e4e75ab44d59a042ff1d113feefd8b34711404fb8dfa83cf8",
            "id": "pypi/2025-05- yesyesyes/tensorflows",
            "ranges": [
                {
                    "type": "ECOSYSTEM",
                    "events": [
                        {
                            "introduced": "0"
                        }
                    ]
                }
            ],
            "import_time": "2025-12-02T22:30:56.436682673Z"
        },
        {
            "source": "kam193",
            "modified_time": "2025-05-26T16:56:04Z",
            "sha256": "e08c37ae45b3a5d5a85a5555ded262e154d91f563636cb5b149176e1aaf12fa7",
            "id": "pypi/2025-05- yesyesyes/tensorflows",
            "ranges": [
                {
                    "type": "ECOSYSTEM",
                    "events": [
                        {
                            "introduced": "0"
                        }
                    ]
                }
            ],
            "import_time": "2025-12-02T23:07:19.621053601Z"
        },
        {
            "versions": [
                "1.0.0",
                "1.0.1",
                "1.0.2",
                "1.0.3",
                "1.0.4",
                "1.0.5",
                "1.1.0",
                "1.1.1",
                "1.1.2",
                "1.1.4",
                "1.1.3"
            ],
            "modified_time": "2025-05-26T16:56:04Z",
            "sha256": "99cd541745226a74ee33fe410814677b1282d826f892299259ef0a748b4b6bca",
            "id": "pypi/2025-05- yesyesyes/tensorflows",
            "source": "kam193",
            "import_time": "2025-12-10T21:38:58.724680066Z"
        },
        {
            "versions": [
                "1.0.0",
                "1.0.1",
                "1.0.2",
                "1.0.3",
                "1.0.4",
                "1.0.5",
                "1.1.0",
                "1.1.1",
                "1.1.2",
                "1.1.3",
                "1.1.4"
            ],
            "modified_time": "2025-05-26T16:56:04Z",
            "sha256": "5aa311f37ff07eae1d38706eb555794793680059e3ec6e5e6e2f48677a04d4c0",
            "id": "pypi/2025-05- yesyesyes/tensorflows",
            "source": "kam193",
            "import_time": "2025-12-30T22:39:04.35536784Z"
        }
    ]
}

References

https://bad-packages.kam193.eu/pypi/package/tensorflows

Credits

- Kamil Mańkowski (kam193)
- - https://github.com/kam193
  - https://bad-packages.kam193.eu/
- Kamil Mańkowski (kam193) - REPORTER
- - https://github.com/kam193
  - https://bad-packages.kam193.eu/

Affected packages

PyPI / tensorflows

Package

Name: tensorflows; View open source insights on deps.dev
Purl: pkg:pypi/tensorflows

Affected ranges

Affected versions

1.*

1.0.0

1.0.1

1.0.2

1.0.3

1.0.4

1.0.5

1.1.0

1.1.1

1.1.2

1.1.3

1.1.4

Database specific

source

"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/pypi/tensorflows/MAL-2025-191891.json"