13245 matches found
MAL-2026-2813 Malicious code in requests-testik11 (PyPI)
--- -= Per source details. Do not edit below this line.=-...
MAL-2026-2812 Malicious code in requests-test-test44 (PyPI)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in requests-test-test3 (PyPI)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in requests-test-test2 (PyPI)
--- -= Per source details. Do not edit below this line.=-...
MAL-2026-2810 Malicious code in requests-test-test2 (PyPI)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in bombonsec-test-123 (PyPI)
--- -= Per source details. Do not edit below this line.=-...
MAL-2026-2809 Malicious code in bombonsec-test-123 (PyPI)
--- -= Per source details. Do not edit below this line.=-...
MAL-2026-2699 Malicious code in robase-api (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 32170773fbd5fab5b2494de72ce601e7b43d9b5c21f36b9bc26a6ada40024de6 During installation package downloads and runs a malicious executable. Likely continuation of 2026-03-rowrap. The campaign is built over a malicious Roblox API...
Malicious code in robase-api (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 32170773fbd5fab5b2494de72ce601e7b43d9b5c21f36b9bc26a6ada40024de6 During installation package downloads and runs a malicious executable. Likely continuation of 2026-03-rowrap. The campaign is built over a malicious Roblox API...
angr (>=9.2.187 <=9.2.217), angr-management (>=9.2.187 <=9.2.217) +25 more potentially affected by unknown CVE via uefi-firmware (=1.11.0)
uefi-firmware PYPI version =1.11.0 is affected by a known vulnerability. The following packages have a transitive dependency on uefi-firmware and may be impacted: - angr =9.2.187, =9.2.187, =1.0.0rc2, =1.0.7, =1.0.4, =9.2.7, =0.0.1, =9.2.187, =1.0.3, =0.1.0, =2.3.2, =0.1.0, =0.1.5 and more Source...
SUSE SLES15 Security Update : python (SUSE-SU-2026:1365-1)
The remote SUSE Linux SLES15 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2026:1365-1 advisory. - CVE-2026-3479: improper resource argument validation in pkgutil.getdata can allow path traversal bsc1259989. Tenable has extracted the preceding...
Malicious code in cpu-optimizers2-33 (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 eb2ab5bcc8a1a35fbd4e5d9b19ac517134ea3fd497e66d7d7126089743804a1c Clones of legitimate libraries with malicious modifications intended to download malicious remote code. The remote script allows executing arbitrary files...
Malicious code in cpu-optimizers (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 f82b75da107c50f4d2f3cf5587e7db58a0dc91b77f8511226ff9219623dc145a Clones of legitimate libraries with malicious modifications intended to download malicious remote code. The remote script allows executing arbitrary files...
MAL-2026-2686 Malicious code in neverinstallme (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 b5a369ecd7616b1dcdbeeca091c3b5bb9df2096c863fe89e9b45154708d5453a Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
python311-aiohttp-3.13.5-3.1 on GA media (moderate)
python311-aiohttp-3.13.5-3.1 on GA media Announcement ID: openSUSE-SU-2026:10545-1 Rating: moderate Cross-References: CVE-2026-34516 CVE-2026-34520 CVSS scores: CVE-2026-34516 SUSE : 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2026-34516 SUSE : 6.9...
OPENSUSE-SU-2026:10553-1 python313-3.13.13-1.1 on GA media
These are all security issues fixed in the python313-3.13.13-1.1 package on the GA media of openSUSE Tumbleweed...
Malicious code in kryptex-os (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 034201cad27492b279f5c274a5091b2e617da50f27125c7774db069256b3486e Clones of legitimate libraries with malicious modifications intended to download malicious remote code. The remote script allows executing arbitrary files...
MAL-2026-2670 Malicious code in 7miners (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 7501eb0620c75479fa4614362aaa6c5766c8cc2f3b4d8829db6a44ca086cc374 Clones of legitimate libraries with malicious modifications intended to download malicious remote code. The remote script allows executing arbitrary files...
Malicious code in buildenv-telemetry (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 e56999171c1a81c357cd2b0847497fac643313bd0252be55a1d03cd40be48c1d Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
MAL-2026-2665 Malicious code in hive-os-settings (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 27052e523741d1d8f29aaadcd3735affbdeaa919d6fad2d0ff01ce878d6e5637 Clones of legitimate libraries with malicious modifications intended to download malicious remote code. The remote script allows executing arbitrary files...