VDB
GCVE-110-OSM-2026-682
GCVE-110-OSM-2026-682
Advisory PublishedCVSS 9.6/10
Malicious Docker Hub image published by TeamPCP on March 22, 2026 as part of the Trivy supply-chain compromise. Second malicious image release following v0.69.5, containing the same backdoored Trivy binary with credential stealer and persistence dropper. Exfiltrates encrypted bundles to scan.aquasecurtiy.org and Cloudflare tunnel C2.
=== MALICIOUS CONTAINER IMAGE ===
Registry: Docker Hub (docker.io)
Image: aquasec/trivy:v0.69.6
Published: March 22, 2026
Also distributed via: GHCR, ECR
=== EMBEDDED PAYLOAD ===
Identical to v0.69.5 — contains backdoored Trivy binary with:
- Memory scraping: /proc/[PID]/mem targeting Runner.Worker
- Filesystem sweep: 50+ sensitive credential paths
- Encryption: AES-256-CBC + RSA-4096
- Exfil: POST to scan.aquasecurtiy.org and plug-tab-protective-relay.trycloudflare.com (tpcp.tar.gz)
- Fallback: Creates tpcp-docs GitHub repo via GITHUB_TOKEN
=== PERSISTENCE (non-CI) ===
Dropper: ~/.config/systemd/user/sysmon.py
C2: https://tdtqy-oyaaa-aaaae-af2dq-cai.raw.icp0.io/
Weaknesses (CWE)
CWE-506Embedded Malicious Code
Risk Scores
CVSS 3.1
9.6/10
Critical · CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| unknown | ighack | * (affected) | — |
| unknown | v0.69.6 (affected) | — |
Aliases
References
Malicious pypi package: ighack
advisory
Browse GCVE Records
73,443 records in the GCVE database · Updated July 18, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.