Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:GHSA-97M3-W2CP-4XX6
HistoryMar 16, 2022 - 11:54 p.m.

Embedded Malicious Code in node-ipc

2022-03-1623:54:32
Google
osv.dev
16

0.008 Low

EPSS

Percentile

81.1%

JSON

The package node-ipc versions 10.1.1 and 10.1.2 are vulnerable to embedded malicious code that was introduced by the maintainer. The malicious code was intended to overwrite arbitrary files dependent upon the geo-location of the user IP address. The maintainer removed the malicious code in version 10.1.3.

CPENameOperatorVersion
node-ipclt10.1.3
node-ipcge10.1.1

Related

prion 1
thn 1
nvd 1
veracode 1
cvelist 1
malwarebytes 1
cve 1
github 1
githubexploit 1
f5 1
threatpost 1
prion
prion
Design/Logic Flaw
2022-03-16 16:15:00
thn
thn
Popular NPM Package Updated to Wipe Russia, Belarus Systems to Protest Ukraine Invasion
2022-03-17 13:25:00
nvd
nvd
CVE-2022-23812
2022-03-16 16:15:10
veracode
veracode
Malicious Package
2022-03-17 03:31:45
cvelist
cvelist
CVE-2022-23812 Malicious Package
2022-03-16 00:00:00
malwarebytes
malwarebytes
Anti-war open-source software developer targets Russians and Belarussians with β€œprotestware”
2022-03-25 00:07:26
cve
cve
CVE-2022-23812
2022-03-16 16:15:10
github
github
Embedded Malicious Code in node-ipc
2022-03-16 23:54:32
githubexploit
githubexploit
Exploit for Code Injection in Node-Ipic Project Node-Ipic
2022-03-17 16:49:22
f5
f5
K42801711 : node-ipc vulnerability CVE-2022-23812
2022-04-12 00:00:00
threatpost
threatpost
Dev Sabotages Popular NPM Package to Protest Russian Invasion
2022-03-17 19:21:09

0.008 Low

EPSS

Percentile

81.1%

JSON
Related for OSV:GHSA-97M3-W2CP-4XX6
prion1thn1nvd1veracode1cvelist1malwarebytes1cve1github1githubexploit1f51threatpost1