{"id":"MAL-2024-4778","summary":"Malicious code in ascicolor (PyPI)","details":"\n---\n_-= Per source details. Do not edit below this line.=-_\n","aliases":["SNYK-PYTHON-ASCICOLOR-6129538"],"modified":"2024-10-24T01:01:57Z","published":"2024-06-25T13:32:29Z","database_specific":{"malicious-packages-origins":[{"source":"reversing-labs","id":"RLMA-2024-03558","sha256":"09f2b24544241df6b07b486ea902e3c0bd6781889e5f9bbafad1e6f9dbdb8f91","versions":["4.1","4.3","4.2"],"modified_time":"2024-06-25T13:32:29Z","import_time":"2024-06-28T02:48:17.413147104Z"},{"source":"reversing-labs","id":"RLUA-2024-07831","sha256":"7b79e6cbf966dc1ab972f5f72fb9add6903258661ba029574b2014b7d5d27f64","modified_time":"2024-10-16T14:36:28Z","import_time":"2024-10-24T00:58:47.610440677Z"}]},"references":[{"type":"ARTICLE","url":"https://www.welivesecurity.com/en/eset-research/pernicious-potpourri-python-packages-pypi/"},{"type":"ADVISORY","url":"https://security.snyk.io/vuln/SNYK-PYTHON-ASCICOLOR-6129538"}],"affected":[{"package":{"name":"ascicolor","ecosystem":"PyPI","purl":"pkg:pypi/ascicolor"},"versions":["4.1","4.3","4.2"],"database_specific":{"source":"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/pypi/ascicolor/MAL-2024-4778.json"}}],"schema_version":"1.7.3","credits":[{"name":"ReversingLabs","contact":["https://www.reversinglabs.com"],"type":"FINDER"}]}