4 matches found
ai-box-lib (>=0.1.0 <=0.2.1), aligned-py (>=0.1.0 <=0.2.0a0) +86 more potentially affected by CVE-2025-68131 via cbor2 (>=4.1.2 <=5.7.1)
cbor2 PYPI version =4.1.2, =0.1.0, =0.1.0, =0.13.0, =0.5.5.post5, =0.5.5.post4, =0.2.0, =0.10.6, =0.7.1a0, =0.1.0, =2.0.1, =1.0.0, =0.0.1, =0.0.5 and more Source cves: CVE-2025-68131 Source advisory: OSV:PYSEC-2025-90...
MAL-2025-185483 Malicious code in antimatter-pino-celeste-dynamo (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d5a5895f5f1d0a71796143beede20c157aef5750e7406148490cd3ebc7a3ae97 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-44742 Malicious code in jabbah-server-chakra-ui-antimatter (npm)
The package jabbah-server-chakra-ui-antimatter was found to contain malicious code...
antimatter (=0.1.3), arcaflow-plugin-sdk (=0.13.0) +3 more potentially affected by CVE-2024-26134 via cbor2 (>=5.5.1 <=5.6.1)
cbor2 PYPI version =5.5.1, =0.1.0, =1.20.0, =0.0.2, =0.0.6 Source cves: CVE-2024-26134 Source advisory: OSV:GHSA-375G-39JQ-VQ7M...