Lucene search
GoogleOSV:MAL-2023-1352HistoryApr 30, 2023 - 10:47 p.m.
Malicious code in zsbpwebsdktest (npm)
2023-04-3022:47:33
Google
osv.dev
3
malicious package
npm
domain communication
7.1 High
AI Score
Confidence
High
-= Per source details. Do not edit below this line.=-
Source: ossf-package-analysis (347bc418b55e9092cd6a48ff3f93f328085fa2c4192ba6dc2c5cf062c3d10c20)
The OpenSSF Package Analysis project identified βzsbpwebsdktestβ @ 9999.99.91 (npm) as malicious.
It is considered malicious because:
- The package communicates with a domain associated with malicious activity.
| CPE | Name | Operator | Version |
|---|---|---|---|
| zsbpwebsdktest | eq | 9999.99.91 | |
| zsbpwebsdktest | eq | 9999.99.92 | |
| zsbpwebsdktest | eq | 9999.99.9 | |
| zsbpwebsdktest | eq | 9999.99.93 | |
| zsbpwebsdktest | eq | 9999.99.94 |
7.1 High
AI Score
Confidence
High