Description
`node-sqlite` was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.
Remediation
References
https://nodesecurity.io/advisories/493
Related Vulnerabilities
CVE-2016-4467 Vulnerability in maven package org.apache.qpid:proton-project
CVE-2017-12612 Vulnerability in maven package org.apache.spark:spark-core_2.10
CVE-2021-41189 Vulnerability in maven package org.dspace:dspace-api
CVE-2023-44487 Vulnerability in maven package io.netty:netty-codec-http2
CVE-2018-13797 Vulnerability in maven package org.webjars.npm:macaddress