4 matches found
Malicious code in odsp-shared (npm)
--- -= Per source details. Do not edit below this line.=-...
MAL-2024-2782 Malicious code in odsp-shared (npm)
--- -= Per source details. Do not edit below this line.=-...
Microsoft Azure ODSP nikisos Uncontrolled Search Path Element Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of ODSP for Microsoft Azure. Authentication is not required to exploit this vulnerability. The specific flaw exists within the installation of ODSP. When installed from the official Microsoft GitHub...
Malicious Package
Overview odsp-shared is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this package was...