Lucene search
GoogleOSV:MAL-2023-1298HistoryApr 30, 2023 - 10:44 p.m.
Malicious code in smart-commons (npm)
2023-04-3022:44:09
Google
osv.dev
3
smart-commons
npm
malicious code
domain
7.1 High
AI Score
Confidence
High
-= Per source details. Do not edit below this line.=-
Source: ossf-package-analysis (3d5cef67a87cd4a497f6879379a3829535212f7d703197ce6d3130dd03fd2da6)
The OpenSSF Package Analysis project identified βsmart-commonsβ @ 19.6.1 (npm) as malicious.
It is considered malicious because:
- The package communicates with a domain associated with malicious activity.
| CPE | Name | Operator | Version |
|---|---|---|---|
| smart-commons | eq | 8.6.1 | |
| smart-commons | eq | 4.2.4 | |
| smart-commons | eq | 9.6.1 | |
| smart-commons | eq | 7.6.1 | |
| smart-commons | eq | 2.2.4 | |
| smart-commons | eq | 19.6.1 | |
| smart-commons | eq | 6.6.1 | |
| smart-commons | eq | 3.2.4 |
7.1 High
AI Score
Confidence
High