yolov8mini @2.3.1
Vulnerability report · Last retrieved from osv.dev June 23, 2026 at 4:30 AM UTC
OSV ID
MAL-2025-3484
Ecosystem
pypi
Summary
On importing the module, there is an automated start of a Telegram bot capable of exfiltrating passwords from browsers, executing arbitrary commands and so on. While the description states it's a monitoring tool, the automated start, capabilities targeting secret values suggest malicious intentions. --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers. Campaign: 2025-03-yolov8mini Reasons (based on the campaign): - infostealer - exfiltration-generic - dependency-confusion - exfiltration-browser-data - The package contains code to execute remote commands (probably limited to a specific set) on the victim's machine.
Source: kam193 (a9222d20b84ed716d5bdf81f1da1d0f088fc7482894c8f25a5d1f757cc477ba9)
Protect your entire dependency tree
Scan your lock files automatically on every PR. Block malicious packages before they reach production.