Lucene search
K

8 matches found

OSV
OSV
added 2025/11/25 12:16 a.m.4 views

MAL-2025-191365 Malicious code in @voiceflow/pino-pretty (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d83773dcab47d7affa39ddff351187eb072a563a8e3a84ef0d0b525c0f5e0185 The package @voiceflow/pino-pretty was found to contain malicious code. Source: google-open-source-security...

6.8AI score
Exploits0References3
EUVD
EUVD
added 2025/11/25 12:16 a.m.2 views

EUVD-2025-199398

Malicious code in @voiceflow/pino npm...

6.6AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/25 12:16 a.m.8 views

Malicious code in @voiceflow/pino (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 980243b18346b941c1cb5c2390751258de1c019b02526dbbd7ad2b2e41069656 The package @voiceflow/pino was found to contain malicious code. Source: google-open-source-security...

6.9AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/25 12:16 a.m.5 views

Malicious code in @voiceflow/pino-pretty (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d83773dcab47d7affa39ddff351187eb072a563a8e3a84ef0d0b525c0f5e0185 The package @voiceflow/pino-pretty was found to contain malicious code. Source: google-open-source-security...

6.9AI score
Exploits0References3
EUVD
EUVD
added 2025/11/25 12:16 a.m.2 views

EUVD-2025-199397

Malicious code in @voiceflow/pino-pretty npm...

6.6AI score
Exploits0References3
vulnersOsv
vulnersOsv
added 2025/11/24 4:24 p.m.7 views

@voiceflow/alexa-types (>=1.1.3 <=1.49.0), @voiceflow/api-sdk (>=1.0.0 <=1.31.6) +6 more potentially affected by unknown CVE via @voiceflow/pino (>=6.11.0 <=6.11.2)

@voiceflow/pino NPM version =6.11.0, =1.1.3, =1.0.0, =1.0.0, =1.1.0, =1.0.0, =1.5.0, =1.10.2, =1.0.0, =1.17.4 Source cves: unknown CVE Source advisory: SNYK:JS-VOICEFLOWPINO-14103426...

5.8AI score
Exploits0
Snyk
Snyk
added 2025/11/24 4:24 p.m.3 views

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package contains malicious code associated with the Sha1-hulud supply chain attack, and its content was removed from the official package manager. The malware functions as a self-replicating worm capable of...

9.8CVSS6.8AI score
Exploits0References3
Snyk
Snyk
added 2025/11/24 4:24 p.m.2 views

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package contains malicious code associated with the Sha1-hulud supply chain attack, and its content was removed from the official package manager. The malware functions as a self-replicating worm capable of...

9.8CVSS6.8AI score
Exploits0References3
Rows per page
Query Builder