MAL-2025-191922

See a problem?
Import Source
https://github.com/ossf/malicious-packages/blob/main/osv/malicious/pypi/voipms-service/MAL-2025-191922.json
JSON Data
https://api.osv.dev/v1/vulns/MAL-2025-191922
Published
2025-03-09T19:00:53Z
Modified
2025-12-12T20:43:50.437541Z
Summary
Malicious code in voipms-service (PyPI)
Details

-= Per source details. Do not edit below this line.=-

Source: kam193 (6482a67f89f2d1c1c86faa07e57079b58fc63b84013774eeced6ed752da99ba3)

The package pretends to do something meaningful, but in fact, just exfiltrates users' cookies from the browser


Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers.

Campaign: 2025-03-voipms-service

Reasons (based on the campaign):

  • exfiltration-browser-data
Database specific
{
    "malicious-packages-origins": [
        {
            "sha256": "37b931aa89617ed26546461deb49252ae9eca7063691404a68b6d947a6b6063a",
            "ranges": [
                {
                    "events": [
                        {
                            "introduced": "0"
                        }
                    ],
                    "type": "ECOSYSTEM"
                }
            ],
            "modified_time": "2025-03-09T19:00:53Z",
            "source": "kam193",
            "id": "pypi/2025-03-voipms-service/voipms-service",
            "import_time": "2025-12-02T22:30:55.717492208Z"
        },
        {
            "sha256": "6482a67f89f2d1c1c86faa07e57079b58fc63b84013774eeced6ed752da99ba3",
            "ranges": [
                {
                    "events": [
                        {
                            "introduced": "0"
                        }
                    ],
                    "type": "ECOSYSTEM"
                }
            ],
            "modified_time": "2025-03-09T19:00:53Z",
            "source": "kam193",
            "id": "pypi/2025-03-voipms-service/voipms-service",
            "import_time": "2025-12-02T23:07:18.757198792Z"
        },
        {
            "versions": [
                "0.1"
            ],
            "sha256": "9deadb8624a1090ce42aca41dd4625471753859f8374a5167232c187bb210031",
            "modified_time": "2025-03-09T19:00:53Z",
            "source": "kam193",
            "id": "pypi/2025-03-voipms-service/voipms-service",
            "import_time": "2025-12-10T21:38:57.926530338Z"
        }
    ]
}
References
Credits

Affected packages

PyPI / voipms-service

Package

Affected ranges

Affected versions

0.*
0.1

Database specific

source
"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/pypi/voipms-service/MAL-2025-191922.json"