{"id":"MAL-2022-7427","summary":"Malicious code in pyproto2 (PyPI)","details":"\n---\n_-= Per source details. Do not edit below this line.=-_\n\n## Source: ghsa-malware (11270c23eaf76f2fad8af5f01e5fb1b3bb9e018dbd6a51a358b158e76119126b)\nSecurity researchers at Check Point Research discovered a malicious package called `PyProto2`. PyPI has since removed `PyProto2`.\n","aliases":["GHSA-gw4j-fhj8-497m"],"modified":"2023-11-08T04:19:41.674458Z","published":"2022-08-30T19:37:47Z","database_specific":{"malicious-packages-origins":[{"modified_time":"2022-08-30T19:37:47Z","id":"GHSA-gw4j-fhj8-497m","ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"}]}],"import_time":"2023-07-30T21:58:11.560843342Z","source":"ghsa-malware","sha256":"11270c23eaf76f2fad8af5f01e5fb1b3bb9e018dbd6a51a358b158e76119126b"}]},"references":[{"type":"WEB","url":"https://pypi.org/project/PyProto2/"},{"type":"WEB","url":"https://research.checkpoint.com/2022/cloudguard-spectral-detects-several-malicious-packages-on-pypi-the-official-software-repository-for-python-developers/"},{"type":"ADVISORY","url":"https://github.com/advisories/GHSA-gw4j-fhj8-497m"}],"affected":[{"package":{"name":"pyproto2","ecosystem":"PyPI","purl":"pkg:pypi/pyproto2"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"}]}],"database_specific":{"cwes":[{"name":"Embedded Malicious Code","cweId":"CWE-506","description":"The product contains code that appears to be malicious in nature."}],"source":"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/pypi/pyproto2/MAL-2022-7427.json"}}],"schema_version":"1.7.3"}