EUVD-2025-199047

Malicious code in react-native-email npm...

MAL-2025-190996 Malicious code in react-native-email (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 685a2ceb0fc4b3de8462a07c55626285d47bbb72612a7feac2582a7dbfc2a606 The package react-native-email was found to contain malicious code. Source: ghsa-malware...

Malicious code in react-native-email (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 685a2ceb0fc4b3de8462a07c55626285d47bbb72612a7feac2582a7dbfc2a606 The package react-native-email was found to contain malicious code. Source: ghsa-malware...

react-native-junsible (>=0.0.1 <=0.0.7) potentially affected by unknown CVE via react-native-email (=2.1.0)

react-native-email NPM version =2.1.0 is affected by a known vulnerability. The following packages have a transitive dependency on react-native-email and may be impacted: - react-native-junsible =0.0.1, =0.0.7 Source cves: unknown CVE Source advisory: OSV:MAL-2025-190996...

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package contains malicious code associated with the Sha1-hulud supply chain attack, and its content was removed from the official package manager. The malware functions as a self-replicating worm capable of...

react-native-junsible (>=0.0.1 <=0.0.7) potentially affected by unknown CVE via react-native-email (=2.1.0)

react-native-email NPM version =2.1.0 is affected by a known vulnerability. The following packages have a transitive dependency on react-native-email and may be impacted: - react-native-junsible =0.0.1, =0.0.7 Source cves: unknown CVE Source advisory: SNYK:JS-REACTNATIVEEMAIL-14103701...