Components
Vulnerabilities
Pricing
MCP
Docs
Sign up
Login
Find vulnerabilities. Fix fast with AI.
Search components by package, version, or CVE to get started.
Ecosystem
Package
Version
Vulnerabilities
sonatype-2026-000542
sonatype-2026-000542
Malicious Packages - Fri Feb 20 2026 [SANDWORM_MODE] [Secrets Exfiltration, Data Corruption, Backdoor]
Published Feb 20, 2026
https://help.sonatype.com/en/sonatype-malware-data.html
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2026-952.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2026-953.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2026-954.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2026-955.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2026-956.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2026-957.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2026-958.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2026-959.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2026-960.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2026-961.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2026-962.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2026-963.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2026-964.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2026-965.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2026-966.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2026-967.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2026-968.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2026-969.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2026-970.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2026-971.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2026-973.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2026-974.json
CVSS Score
Critical
9.3
Components Impacted
Components Impacted
Security Details
Security Details
Sonatype Research
Sonatype Research
Ecosystem
Package
Version
Ecosystem
Package
Version
npm
claud-code
0.0.1-security
npm
claud-code
0.1.0
npm
claud-code
0.2.0
npm
claud-code
0.2.1
npm
cloude
0.0.1-security
npm
cloude
0.1.0
npm
cloude
0.2.0
npm
cloude
0.3.0
npm
cloude-code
0.0.1-security
npm
cloude-code
0.1.0
npm
cloude-code
0.2.0
npm
cloude-code
0.2.1
npm
crypto-locale
0.0.1-security
npm
crypto-locale
1.0.0
npm
crypto-reader-info
0.0.1-security
npm
crypto-reader-info
1.0.0
npm
detect-cache
0.0.1-security
npm
detect-cache
1.0.0
npm
ethres
0.0.1-security
npm
ethres
6.16.0
npm
ethres
6.16.1
npm
ethres
6.16.2
npm
format-defaults
0.0.1-security
npm
format-defaults
1.0.0
npm
hardhta
0.0.1-security
npm
hardhta
1.0.0
npm
iru-caches
0.0.1-security
npm
iru-caches
1.0.0
npm
iru-caches
1.0.1
npm
iru-caches
1.0.2
npm
iruchache
0.0.1-security
npm
iruchache
1.0.0
npm
iruchache
1.0.1
npm
iruchache
1.0.2
npm
locale-loader-pro
0.0.1-security
npm
locale-loader-pro
1.0.0
npm
naniod
0.0.1-security
npm
naniod
1.0.0
npm
node-native-bridge
0.0.1-security
npm
node-native-bridge
1.0.0
npm
opencraw
0.0.1-security
npm
opencraw
2026.2.15
npm
opencraw
2026.2.16
npm
opencraw
2026.2.17
npm
parse-compat
0.0.1-security
npm
parse-compat
1.0.0
npm
rimarf
0.0.1-security
npm
rimarf
1.0.0
npm
scan-store
0.0.1-security
npm
scan-store
1.0.0
1-50 of 64
sonatype-2026-000542 | Components Impacted | Sonatype Guide | Sonatype Guide
