Spectra Assure
Community
Docs
failIncident: Malware
Scanned: 4 days ago

ETHcode

Artifact:
removed
malicious
Research
Ethereum IDE for VS Code
License: Permissive (MIT)
Published: 5 months ago
Publisher: 7finney
Visit Github
See on Visual Studio Code

SAFE Assessment

Compliance

Licenses
No license compliance issues
Secrets
No sensitive information found

Security

Vulnerabilities
4 severe vulnerabilities exploited
Hardening
2 execution hijacking concerns

Threats

Tampering
1 suspicious application behaviors
Malware
3 supply chain attack artifacts

INCIDENTS FOR THIS VERSION:

malware
5 months agoReported By: ReversingLabs (Researcher)
Learn more about malware detection
malware
5 months agoReported By: ReversingLabs (Automated)
Learn more about malware detection
removal
Reported By: Community
List of known vulnerabilities affecting the software package and the components it embeds. Last refreshed on: 2025/11/28
All detected vulnerabilities are fixable
Run the update/upgrade command in your package manager to resolve the detected vulnerabilities
CVSS Score
CVE
Name
Tags
critical
9.4
CVE-2025-7783
Exploits Exist
Fix Available
critical
9.1
CVE-2024-42461
Fix Available
critical
9.1
CVE-2024-48949
Fix Available
critical
9.1
CVE-2025-6545
Fix Available
critical
9.1
CVE-2025-6547
Fix Available
critical
9.1
CVE-2025-9287
Exploits Exist
Fix Available
critical
9.1
CVE-2025-9288
Exploits Exist
Fix Available
high
8.7
CVE-2024-48930
Fix Available
high
7.5
CVE-2023-46234
Fix Available
high
7.5
CVE-2025-58754
Exploits Exist
Fix Available

Did you know...

... that you can use ReversingLabs’ Spectra Assure platform to perform regular risk assessments of packages you develop in-house?

We recommend continuous software safeness monitoring through CI/CD integrations and pre-release/deployment checks. In addition to basic package information found on this page our platform offers rich reports for developers and DevSecOps that help them remediate all reported issues.