3 matches found
atm_areeba (=1.0.2) potentially affected by unknown CVE via deneuve-package-private (=0.0.1-security)
deneuve-package-private NPM version =0.0.1-security is affected by a known vulnerability. The following packages have a transitive dependency on deneuve-package-private and may be impacted: - atmareeba =1.0.2 Source cves: unknown CVE Source advisory: OSV:MAL-2022-2420...
Malicious code in deneuve-package-private (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 67f737cac2a16b5395e3b492f5dbb5747e257289acaed262699b10ed723ef1e8 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-2420 Malicious code in deneuve-package-private (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 67f737cac2a16b5395e3b492f5dbb5747e257289acaed262699b10ed723ef1e8 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...