VDB

GCVE-110-OSM-2026-6013

GCVE-110-OSM-2026-6013
Advisory PublishedCVSS 9.6/10
Vulnetix · Advisory published June 16, 2026
This repository hosts DPRK related malware, flexibleferret and invisibleferret which will run once the project has been opened up in Visual Studio Code. Pulls second stage payloads from https://locservice.short.gy/ZRj2s0k9m https://locservice.short.gy/ZRj2s0k9l https://locservice.short.gy/ZRj2s0k9w Those redirect to: http://165.140.86.190:3000/task/mac?token=90284f08cc01 http://165.140.86.190:3000/task/linux?token=90284f08cc01 http://165.140.86.190:3000/task/windows?token=90284f08cc01

Weaknesses (CWE)

CWE-506Embedded Malicious Code

Risk Scores

CVSS 3.1
9.6/10
Critical · CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

Affected Products

VendorProductVersionsPlatforms
unknownall (affected)

Browse GCVE Records

72,921 records in the GCVE database · Updated July 15, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›