Description
`node-fabric` was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.
Remediation
References
https://nodesecurity.io/advisories/489
Related Vulnerabilities
CVE-2022-39387 Vulnerability in maven package org.xwiki.contrib.oidc:oidc-authenticator
CVE-2023-36478 Vulnerability in maven package org.eclipse.jetty.http3:http3-qpack
CVE-2018-15531 Vulnerability in maven package net.bull.javamelody:javamelody-core
CVE-2017-16059 Vulnerability in npm package mssql-node
CVE-2021-4264 Vulnerability in maven package org.webjars.npm:dustjs-linkedin