Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 4:56 a.m.7 views

CVE-2019-19771

The lodahs package 0.0.1 for Node.js is a Trojan horse, and may have been installed by persons who mistyped the lodash package name. In particular, the Trojan horse finds and exfiltrates cryptocurrency wallets...

9.3CVSS7AI score0.01257EPSS
Exploits0References1
Circl
Circl
added 2024/03/11 3:16 p.m.5 views

CVE-2019-19771

creationtimestamp| type| source ---|---|--- 2024-03-11 15:16:44+00:00| seen| https://t.me/ctinow/204771...

9.3CVSS8.1AI score0.01257EPSS
Exploits0References1
NVD
NVD
added 2019/12/12 8:15 p.m.9 views

CVE-2019-19771

The lodahs package 0.0.1 for Node.js is a Trojan horse, and may have been installed by persons who mistyped the lodash package name. In particular, the Trojan horse finds and exfiltrates cryptocurrency wallets...

9.3CVSS8.9AI score0.01257EPSS
Exploits0References2
OSV
OSV
added 2019/12/12 8:15 p.m.4 views

CVE-2019-19771

The lodahs package 0.0.1 for Node.js is a Trojan horse, and may have been installed by persons who mistyped the lodash package name. In particular, the Trojan horse finds and exfiltrates cryptocurrency wallets...

8.8CVSS5.8AI score0.01257EPSS
Exploits0References2
CVE
CVE
added 2019/12/12 7:49 p.m.48 views

CVE-2019-19771

CVE-2019-19771 concerns the lodahs package (Node.js) version 0.0.1, a malware trojan masquerading as lodash that installs via mistyped npm package names and exfiltrates cryptocurrency wallets. Multiple sources (Red Hat, NVD, GHSA, OSV, CNVD, CVE lists) describe it as malware affecting Node.js env...

9.3CVSS8.8AI score0.01257EPSS
Exploits0References2Affected Software1
Symantec
Symantec
added 2019/11/27 12:0 a.m.26 views

Node.js 'lodahs' Package CVE-2019-19771 Unspecified Security Vulnerability

Description The 'lodahs' Package for Node.js is prone to an unspecified security vulnerability. Successfully exploiting this issue will allow attackers to perform unauthorized actions; this may aid in launching further attacks. Node.js lodahs version 1.0.0 is vulnerable Technologies Affected Node...

1.2AI score0.01257EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder