{"id":"MAL-2024-1292","summary":"Malicious code in sid-client-manager (npm)","details":"\n---\n_-= Per source details. Do not edit below this line.=-_\n\n## Source: ghsa-malware (271bfa6075e1282de1c0d5269d79377fe6b16e9d60fa41a2a6a070cb97795905)\nAny computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be rotated immediately from a different computer. The package should be removed, but as full control of the computer may have been given to an outside entity, there is no guarantee that removing the package will remove all malicious software resulting from installing it.\n","aliases":["GHSA-7628-hj85-g74g","SNYK-JS-SIDCLIENTMANAGER-6670414"],"modified":"2024-06-28T03:27:12.563737Z","published":"2024-04-22T06:08:13Z","database_specific":{"malicious-packages-origins":[{"ranges":[{"events":[{"introduced":"0"}],"type":"SEMVER"}],"source":"ghsa-malware","id":"GHSA-7628-hj85-g74g","modified_time":"2024-04-22T06:08:18Z","import_time":"2024-04-23T00:25:31.459910552Z","sha256":"271bfa6075e1282de1c0d5269d79377fe6b16e9d60fa41a2a6a070cb97795905"},{"sha256":"e229330babb17253133577f26642bdad7d7085c2a061501e3f45e24fb04aa156","source":"reversing-labs","id":"RLMA-2024-01744","versions":["0.0.115","0.0.64","0.0.178","1.0.0","0.0.74","0.0.224","0.0.42","0.0.166","0.0.201","0.0.147","0.0.4","0.0.167","0.0.80","0.0.113","0.0.114","0.0.122","0.0.187","0.0.209","0.0.32","0.0.154","0.0.173","0.0.234","0.0.26","0.0.17","0.0.130","0.0.16","0.0.136","0.0.50","0.0.179","0.0.169","0.0.175","0.0.110","0.0.57","0.0.81","0.0.20","0.0.214","0.0.66","0.0.104","0.0.84","0.0.14","0.0.160","0.0.67","0.0.219","0.0.40","0.0.47","0.0.176","0.0.213","0.0.132","0.0.30","0.0.34","0.0.75","0.0.87","0.0.106","0.0.190","0.0.125","0.0.140","0.0.186","0.0.165","0.0.13","0.0.216","0.0.29","0.0.134","0.0.52","0.0.181","0.0.103","0.0.222","0.0.61","0.0.127","0.0.220","0.0.129","0.0.19","0.0.33","0.0.41","0.0.107","0.0.108","0.0.196","0.0.138","0.0.228","0.0.95","9.2.8","0.0.229","0.0.101","0.0.121","0.0.86","0.0.185","0.0.151","0.0.149","0.0.72","0.0.100","0.0.71","0.0.208","0.0.211","0.0.195","0.0.24","0.0.133","0.0.82","0.0.225","0.0.92","0.0.143","0.0.68","0.0.182","0.0.184","0.0.39","0.0.22","0.0.99","0.0.200","0.0.111","0.0.60","0.0.137","0.0.18","0.0.73","0.0.141","0.0.49","0.0.188","0.0.65","0.0.191","0.0.177","0.0.3","0.0.112","0.0.192","0.0.105","0.0.85","0.0.183","0.0.171","0.0.232","0.0.120","0.0.58","0.0.207","0.0.170","0.0.43","0.0.8","0.0.98","0.0.118","0.0.123","0.0.77","0.0.139","0.0.155","0.0.172","0.0.128","0.0.124","0.0.70","0.0.153","0.0.227","0.0.199","0.0.226","0.0.11","0.0.37","0.0.193","0.0.48","0.0.180","0.0.62","0.0.63","0.0.79","0.0.55","0.0.94","0.0.53","0.0.168","0.0.21","0.0.6","0.0.233","0.0.131","0.0.157","0.0.156","0.0.23","0.0.223","0.0.51","0.0.162","0.0.9","0.0.69","0.0.35","0.0.158","0.0.198","0.0.142","0.0.150","0.0.203","0.0.76","0.0.56","0.0.135","0.0.45","0.0.146","0.0.164","0.0.126","0.0.12","0.0.59","0.0.159","0.0.5","0.0.161","0.0.83","0.0.145","0.0.189","0.0.217","0.0.231","0.0.78","9.2.9","0.0.119","0.0.28","0.0.46","0.0.152","0.0.194","0.0.89","0.0.90","0.0.215","0.0.54","0.0.221","0.0.163","0.0.197","0.0.88","0.0.212","0.0.25","0.0.102","0.0.202","0.0.7","0.0.96","0.0.91","0.0.236","0.0.230","0.0.15","0.0.144","0.0.210","0.0.10","0.0.174","0.0.97","0.0.31","0.0.93","0.0.44","0.0.109","0.0.117","0.0.36","0.0.38","0.0.116","0.0.27","0.0.148"],"modified_time":"2024-06-25T13:00:46Z","import_time":"2024-06-28T02:44:44.078367669Z"}]},"references":[{"type":"ADVISORY","url":"https://github.com/advisories/GHSA-7628-hj85-g74g"},{"type":"ADVISORY","url":"https://security.snyk.io/vuln/SNYK-JS-SIDCLIENTMANAGER-6670414"},{"type":"PACKAGE","url":"https://npmjs.com/package/sid-client-manager"}],"affected":[{"package":{"name":"sid-client-manager","ecosystem":"npm","purl":"pkg:npm/sid-client-manager"},"ranges":[{"type":"SEMVER","events":[{"introduced":"0"}]}],"versions":["0.0.115","0.0.64","0.0.178","1.0.0","0.0.74","0.0.224","0.0.42","0.0.166","0.0.201","0.0.147","0.0.4","0.0.167","0.0.80","0.0.113","0.0.114","0.0.122","0.0.187","0.0.209","0.0.32","0.0.154","0.0.173","0.0.234","0.0.26","0.0.17","0.0.130","0.0.16","0.0.136","0.0.50","0.0.179","0.0.169","0.0.175","0.0.110","0.0.57","0.0.81","0.0.20","0.0.214","0.0.66","0.0.104","0.0.84","0.0.14","0.0.160","0.0.67","0.0.219","0.0.40","0.0.47","0.0.176","0.0.213","0.0.132","0.0.30","0.0.34","0.0.75","0.0.87","0.0.106","0.0.190","0.0.125","0.0.140","0.0.186","0.0.165","0.0.13","0.0.216","0.0.29","0.0.134","0.0.52","0.0.181","0.0.103","0.0.222","0.0.61","0.0.127","0.0.220","0.0.129","0.0.19","0.0.33","0.0.41","0.0.107","0.0.108","0.0.196","0.0.138","0.0.228","0.0.95","9.2.8","0.0.229","0.0.101","0.0.121","0.0.86","0.0.185","0.0.151","0.0.149","0.0.72","0.0.100","0.0.71","0.0.208","0.0.211","0.0.195","0.0.24","0.0.133","0.0.82","0.0.225","0.0.92","0.0.143","0.0.68","0.0.182","0.0.184","0.0.39","0.0.22","0.0.99","0.0.200","0.0.111","0.0.60","0.0.137","0.0.18","0.0.73","0.0.141","0.0.49","0.0.188","0.0.65","0.0.191","0.0.177","0.0.3","0.0.112","0.0.192","0.0.105","0.0.85","0.0.183","0.0.171","0.0.232","0.0.120","0.0.58","0.0.207","0.0.170","0.0.43","0.0.8","0.0.98","0.0.118","0.0.123","0.0.77","0.0.139","0.0.155","0.0.172","0.0.128","0.0.124","0.0.70","0.0.153","0.0.227","0.0.199","0.0.226","0.0.11","0.0.37","0.0.193","0.0.48","0.0.180","0.0.62","0.0.63","0.0.79","0.0.55","0.0.94","0.0.53","0.0.168","0.0.21","0.0.6","0.0.233","0.0.131","0.0.157","0.0.156","0.0.23","0.0.223","0.0.51","0.0.162","0.0.9","0.0.69","0.0.35","0.0.158","0.0.198","0.0.142","0.0.150","0.0.203","0.0.76","0.0.56","0.0.135","0.0.45","0.0.146","0.0.164","0.0.126","0.0.12","0.0.59","0.0.159","0.0.5","0.0.161","0.0.83","0.0.145","0.0.189","0.0.217","0.0.231","0.0.78","9.2.9","0.0.119","0.0.28","0.0.46","0.0.152","0.0.194","0.0.89","0.0.90","0.0.215","0.0.54","0.0.221","0.0.163","0.0.197","0.0.88","0.0.212","0.0.25","0.0.102","0.0.202","0.0.7","0.0.96","0.0.91","0.0.236","0.0.230","0.0.15","0.0.144","0.0.210","0.0.10","0.0.174","0.0.97","0.0.31","0.0.93","0.0.44","0.0.109","0.0.117","0.0.36","0.0.38","0.0.116","0.0.27","0.0.148"],"database_specific":{"source":"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/sid-client-manager/MAL-2024-1292.json","cwes":[{"cweId":"CWE-506","name":"Embedded Malicious Code","description":"The product contains code that appears to be malicious in nature."}]}}],"schema_version":"1.7.3","credits":[{"name":"ReversingLabs","contact":["https://www.reversinglabs.com"],"type":"FINDER"}]}