Security update for perl-Net-Dropbox-API (moderate)

openSUSE Security Update: Security update for perl-Net-Dropbox-API Announcement ID: openSUSE-SU-2026:0217-1 Rating: moderate References: 1240884 Cross-References: CVE-2024-58036 Affected Products: openSUSE Backports SLE-15-SP7 An update that fixes one vulnerability is now available. Description:...

EUVD-2024-54368

Malicious code in bioql PyPI...

MAL-2025-18832 Malicious code in dropbox-api-v2-explorer (npm)

The package dropbox-api-v2-explorer was found to contain malicious code...

perl-Net-Dropbox-API-1.900.0-2.1 on GA media (moderate)

perl-Net-Dropbox-API-1.900.0-2.1 on GA media Announcement ID: openSUSE-SU-2025:15187-1 Rating: moderate Cross-References: CVE-2024-58036 Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can now be installed. Description: These are all security issues fixed in the...

OPENSUSE-SU-2025:15187-1 perl-Net-Dropbox-API-1.900.0-2.1 on GA media

These are all security issues fixed in the perl-Net-Dropbox-API-1.900.0-2.1 package on the GA media of openSUSE Tumbleweed...

SUSE CVE-2024-58036

Net::Dropbox::API 1.9 and earlier for Perl uses the rand function as the default source of entropy, which is not cryptographically secure, for cryptographic functions. Specifically Net::Dropbox::API uses the Data::Random library which specifically states that it is "Useful mostly for test...

CVE-2024-58036

Net::Dropbox::API 1.9 and earlier for Perl uses the rand function as the default source of entropy, which is not cryptographically secure, for cryptographic functions. Specifically Net::Dropbox::API uses the Data::Random library which specifically states that it is "Useful mostly for test...

DEBIAN-CVE-2024-58036

Net::Dropbox::API 1.9 and earlier for Perl uses the rand function as the default source of entropy, which is not cryptographically secure, for cryptographic functions. Specifically Net::Dropbox::API uses the Data::Random library which specifically states that it is "Useful mostly for test...

CVE-2024-58036

Net::Dropbox::API 1.9 and earlier for Perl uses the rand function as the default source of entropy, which is not cryptographically secure, for cryptographic functions. Specifically Net::Dropbox::API uses the Data::Random library which specifically states that it is "Useful mostly for test...

CVE-2024-58036

Net::Dropbox::API 1.9 and earlier for Perl uses the rand function as the default source of entropy, which is not cryptographically secure, for cryptographic functions. Specifically Net::Dropbox::API uses the Data::Random library which specifically states that it is "Useful mostly for test...

CVE-2024-58036 Net::Dropbox::API 1.9 and earlier for Perl uses insecure rand() function for cryptographic functions

Net::Dropbox::API 1.9 and earlier for Perl uses the rand function as the default source of entropy, which is not cryptographically secure, for cryptographic functions. Specifically Net::Dropbox::API uses the Data::Random library which specifically states that it is "Useful mostly for test...

CVE-2024-58036 Net::Dropbox::API 1.9 and earlier for Perl uses insecure rand() function for cryptographic functions

Net::Dropbox::API 1.9 and earlier for Perl uses the rand function as the default source of entropy, which is not cryptographically secure, for cryptographic functions. Specifically Net::Dropbox::API uses the Data::Random library which specifically states that it is "Useful mostly for test...

CVE-2024-58036

CVE-2024-58036 affects the Perl module stack Net::Dropbox::API 1.9 and earlier, where cryptographic functions default to using the non-cryptographically secure rand() entropy source. The issue is tied to the use of the Data::Random library by Net::Dropbox::API, which itself notes it is “Useful mo...

PT-2025-15067 · Unknown +1 · Net::Dropbox::Api +2

Name of the Vulnerable Software and Affected Versions: Net::Dropbox::API versions 1.9 and earlier Description: The issue concerns the use of a non-cryptographically secure source of entropy for cryptographic functions. Specifically, Net::Dropbox::API uses the Data::Random library, which relies on...

Malicious code in dropbox-api-client (npm)

--- -= Per source details. Do not edit below this line.=-...

MAL-2025-1781 Malicious code in dropbox-api-client (npm)

--- -= Per source details. Do not edit below this line.=-...

Worok Hackers Abuse Dropbox API to Exfiltrate Data via Backdoor Hidden in Images

A recently discovered cyber espionage group dubbed Worok has been found hiding malware in seemingly innocuous image files, corroborating a crucial link in the threat actor's infection chain. Czech cybersecurity firm Avast said the purpose of the PNG files is to conceal a payload that's used to...

Threat Campaign by Molerats uses NimbleMamba Malware to target Middle East

THREAT LEVEL: Red. For a detailed advisory, download the pdf file here An APT group Molerats associated with Gaza has launched a new threat campaign using a malware NimbleMamba aimed at Middle Eastern governments, foreign policy think tanks, and even a state-owned airline. The current attack was...

Palestine-Aligned Hackers Use New NimbleMamba Implant in Recent Attacks

An advanced persistent threat APT hacking group operating with motives that likely align with Palestine has embarked on a new campaign that takes advantage of a previously undocumented implant called NimbleMamba. The intrusions leveraged a sophisticated attack chain targeting Middle Eastern...

Molerats Hackers Return With New Attacks Targeting Middle Eastern Governments

A Middle Eastern advanced persistent threat APT group has resurfaced after a two-month hiatus to target government institutions in the Middle East and global government entities associated with geopolitics in the region in a rash of new campaigns observed earlier this month. Sunnyvale-based...