{"id":"MAL-2022-7423","summary":"Malicious code in free-net-vpn (PyPI)","details":"\n---\n_-= Per source details. Do not edit below this line.=-_\n\n## Source: ghsa-malware (a7c578ebbd5b9dea94fedafe257ab0b885731b9f32789b9d9a2708193ef03995)\nSecurity researchers at Check Point Research discovered a malicious package called `free-net-vpn` that targets environment variables. PyPI has since removed `free-net-vpn`.\n","aliases":["GHSA-jgw6-3fjm-w5f6"],"modified":"2023-11-08T04:20:34.733868Z","published":"2022-08-30T19:38:08Z","database_specific":{"malicious-packages-origins":[{"source":"ghsa-malware","id":"GHSA-jgw6-3fjm-w5f6","sha256":"a7c578ebbd5b9dea94fedafe257ab0b885731b9f32789b9d9a2708193ef03995","ranges":[{"events":[{"introduced":"0"}],"type":"ECOSYSTEM"}],"import_time":"2023-07-30T21:58:15.479450573Z","modified_time":"2022-08-30T19:38:09Z"}]},"references":[{"type":"WEB","url":"https://pypi.org/project/free-net-vpn"},{"type":"WEB","url":"https://research.checkpoint.com/2022/cloudguard-spectral-detects-several-malicious-packages-on-pypi-the-official-software-repository-for-python-developers/"},{"type":"ADVISORY","url":"https://github.com/advisories/GHSA-jgw6-3fjm-w5f6"}],"affected":[{"package":{"name":"free-net-vpn","ecosystem":"PyPI","purl":"pkg:pypi/free-net-vpn"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"}]}],"database_specific":{"source":"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/pypi/free-net-vpn/MAL-2022-7423.json","cwes":[{"description":"The product contains code that appears to be malicious in nature.","cweId":"CWE-506","name":"Embedded Malicious Code"}]}}],"schema_version":"1.7.3"}