Filtered by vendor Lodahs Project
Subscribe
Total
1 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2019-19771 | 1 Lodahs Project | 1 Lodahs | 2024-02-04 | 9.3 HIGH | 8.8 HIGH |
The lodahs package 0.0.1 for Node.js is a Trojan horse, and may have been installed by persons who mistyped the lodash package name. In particular, the Trojan horse finds and exfiltrates cryptocurrency wallets. |