{"id":"RUSTSEC-2025-0159","summary":"`sophosfirewall-python` was removed from crates.io for malicious code","details":"`sophosfirewall-python` was part of a campaign that attempted to exfiltrate\nenvironmental data from the host.\n\nThe malicious crate had 6 versions published in February 2025, and had no\nevidence of actual usage. This crate had no dependencies on crates.io.","modified":"2026-03-30T21:45:37.703532Z","published":"2025-02-15T12:00:00Z","database_specific":{"license":"CC0-1.0"},"references":[{"type":"PACKAGE","url":"https://crates.io/crates/sophosfirewall-python"},{"type":"ADVISORY","url":"https://rustsec.org/advisories/RUSTSEC-2025-0159.html"}],"affected":[{"package":{"name":"sophosfirewall-python","ecosystem":"crates.io","purl":"pkg:cargo/sophosfirewall-python"},"ranges":[{"type":"SEMVER","events":[{"introduced":"0.0.0-0"}]}],"ecosystem_specific":{"affected_functions":null,"affects":{"os":[],"functions":[],"arch":[]}},"database_specific":{"informational":null,"cvss":null,"source":"https://github.com/rustsec/advisory-db/blob/osv/crates/RUSTSEC-2025-0159.json","categories":["malicious"]}}],"schema_version":"1.7.5"}