17 matches found
Malicious Package
Overview com.unity.xr.visionos is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...
MAL-2025-190622 Malicious code in com.unity.xr.visionos (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cfc5fb97986cf3c32288632dc0df9916994609543b354548885edf9d229dd489 The package com.unity.xr.visionos was found to contain malicious code. Source: ghsa-malware...
Malicious code in com.unity.xr.visionos (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cfc5fb97986cf3c32288632dc0df9916994609543b354548885edf9d229dd489 The package com.unity.xr.visionos was found to contain malicious code. Source: ghsa-malware...
EUVD-2025-198564
Malicious code in com.unity.xr.visionos npm...
MAL-2025-47647 Malicious code in com.unity.xr.mock-hmd (npm)
--- -= Per source details. Do not edit below this line.=-...
MAL-2025-47645 Malicious code in com.unity.xr.core-utils (npm)
--- -= Per source details. Do not edit below this line.=-...
MAL-2025-17369 Malicious code in com.unity.xr.arfoundation (npm)
The package com.unity.xr.arfoundation was found to contain malicious code...
Malicious code in com.unity.xr.management (npm)
The package com.unity.xr.management was found to contain malicious code...
MAL-2025-17373 Malicious code in com.unity.xr.legacyinputhelpers (npm)
The package com.unity.xr.legacyinputhelpers was found to contain malicious code...
Malicious code in com.unity.xr.arfoundation (npm)
The package com.unity.xr.arfoundation was found to contain malicious code...
MAL-2025-17374 Malicious code in com.unity.xr.management (npm)
The package com.unity.xr.management was found to contain malicious code...
Malicious code in com.unity.xr-line-renderer (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 688c31fe545231e784aa21aa3349d80f9a04b02f893a52510f1be2216609f80f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious Package
Overview com.unity.xr.oculus is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this packa...
Malicious code in com.unity.xr.arsubsystems (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d5212f47fec1af462e149a91715cfb35ea7ff575cb6588acbb783f685387d82b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-2112 Malicious code in com.unity.xr.windowsmr.metro (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 235005d3f9cef6a3ec33b58a37447d5f2ba4d139464a0c4fa603896c8f445d58 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in com.unity.xr.oculus (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9e99a11c7a854e56a08e3f6559004b7d3b862c6c2e7c99bfcb6576c921cd9cde Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in com.unity.xr.magicleap (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9956acef735f4766008b21f97e70a9c91216355b559380927a3764103d129fe9 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...