Lucene search
GoogleOSV:MAL-2024-1591HistoryJun 12, 2024 - 10:30 a.m.
Malicious code in ing-feat-lu-luxtrust-stick-authentication (npm)
2024-06-1210:30:45
Google
osv.dev
8
malicious code
ing-feat-lu-luxtrust-stick-authentication
npm
package
security
malicious activity
commands
software
7.3 High
AI Score
Confidence
High
-= Per source details. Do not edit below this line.=-
Source: ossf-package-analysis (1e84b6fcb318d2b4cf4fc650d67ffb94a0622eb47d6b88e8662bdb6b2dc62930)
The OpenSSF Package Analysis project identified βing-feat-lu-luxtrust-stick-authenticationβ @ 200.0.1 (npm) as malicious.
It is considered malicious because:
-
The package communicates with a domain associated with malicious activity.
-
The package executes one or more commands associated with malicious behavior.
| CPE | Name | Operator | Version |
|---|---|---|---|
| ing-feat-lu-luxtrust-stick-authentication | eq | 200.0.1 |
7.3 High
AI Score
Confidence
High