30 matches found
MAL-2025-96210 Malicious code in realistic_nightingale_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0b9fee092fbaf8d4f0d1bd3b6916ef9b1298e7980363bbd58ee6ab35b55c0fa4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in corporate_orangutan_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a4f3c27521542f6d1918d8d7d63c1eee6e88267fdd983ac67216ff19a70f0456 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-87029 Malicious code in joko-asinan44-riris (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector baf8322dbeb5e3cc87544e215f1bbb63f345d1f942bfb3dad9bbbcd9b486a031 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in yuni-rawon69-sukiwir (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9b15d203e6e75db0f1df6071795ea415fff84350812c556361f58570052c3dbd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-81976 Malicious code in utomo-lutis57-sukiwir (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 168a2ae640067a2c366f724da131bba021a80f5e7682639c374d17d88a30ed4d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-82347 Malicious code in wibowo-keraktelor4-sukiwir (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 01c2ff5314a3298d6ecf3c73da893a8d39f5577c48730a81834c584d50a4fe91 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in ade-semur53-breki (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2e1ac369a8e06a6c955cc8ce42edbfd06d610d2505f0d911011d24dbd314ef28 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in outstanding-peach-mandrill (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 30993a24299328b9093093a1575e69d8599168ef8daf6f040549b7f23dcc8227 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in candra-kripik19-breki (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c175f49e4569403b0845d5398c596a4385d328ddf6aad5b44fa2e2c9d624d1d5 The package candra-kripik19-breki was found to contain malicious code. This package appears to be part of the tea.xyz token reward campaign that...
CVE-2024-54512
The issue was addressed by removing the relevant flags. This issue is fixed in watchOS 11.2, iOS 18.2 and iPadOS 18.2. A system binary could be used to fingerprint a user's Apple Account...