Components
Vulnerabilities
Pricing
MCP
Docs
Sign up
Login
Find vulnerabilities. Fix fast with AI.
Search components by package, version, or CVE to get started.
Ecosystem
Package
Version
Vulnerabilities
sonatype-2025-004387
sonatype-2025-004387
Malicious Packages - Mon Nov 03 2025 [Info Stealer]
Published Nov 3, 2025
https://help.sonatype.com/en/sonatype-malware-data.html
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-49304.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-49305.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-49306.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-49307.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-49314.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-49315.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-49317.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-49322.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-49324.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-49328.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-49339.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-49340.json
CVSS Score
Medium
5.3
Components Impacted
Components Impacted
Security Details
Security Details
Sonatype Research
Sonatype Research
Ecosystem
Package
Version
Ecosystem
Package
Version
npm
balancer-labs-sor-v1
3.4.3
npm
balancer-labs-sor-v1
5.0.8
npm
balancer-labs-sor-v1
5.0.9
npm
containerization-assist
0.0.1-security
npm
containerization-assist
10.1.0
npm
containerization-assist
99.0.0
npm
ethers-5
3.4.3
npm
ethers-5
5.0.8
npm
ethers-5
5.0.9
npm
experience-manager-apis
1.0.0
npm
experience-manager-apis
3.4.3
npm
experience-manager-apis
5.0.8
npm
experience-manager-apis
5.0.9
npm
fec-cms
3.4.3
npm
fec-cms
5.0.8
npm
fec-cms
5.0.9
npm
kubeflow
0.0.1-security
npm
kubeflow
10.1.0
npm
kubeflow
99.0.0
npm
loaders-fbo.gov
3.4.3
npm
loaders-fbo.gov
5.0.8
npm
loaders-fbo.gov
5.0.9
npm
make-vis-flexible
0.0.1-security
npm
make-vis-flexible
10.1.0
npm
make-vis-flexible
99.0.0
npm
mbed-js
3.4.3
npm
mbed-js
5.0.8
npm
mbed-js
5.0.9
npm
mbed-js-ble
3.4.3
npm
mbed-js-ble
5.0.8
npm
mbed-js-ble
5.0.9
npm
mercury-composable
3.4.3
npm
mercury-composable
5.0.8
npm
mercury-composable
5.0.9
npm
my-team-tools
3.4.3
npm
my-team-tools
5.0.10
npm
my-team-tools
5.0.8
npm
my-team-tools
5.0.9
npm
parallel-coordinates
0.0.1-security
npm
parallel-coordinates
10.1.0
npm
parallel-coordinates
99.0.0
npm
pil2-compiler
1.0.0
npm
pil2-compiler
5.0.8
npm
pil2-compiler
5.0.9
npm
radial-chart
0.0.1-security
npm
radial-chart
10.1.0
npm
radial-chart
99.0.0
npm
sechub-openapi-ts-client
0.0.1-security
npm
sechub-openapi-ts-client
10.1.0
npm
sechub-openapi-ts-client
99.0.0
1-50 of 62
sonatype-2025-004387 | Components Impacted | Sonatype Guide | Sonatype Guide
