Description
`node-fabric` was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.
Remediation
References
https://nodesecurity.io/advisories/489
Related Vulnerabilities
CVE-2022-4348 Vulnerability in maven package com.ruoyi:ruoyi-common
CVE-2020-9492 Vulnerability in maven package org.apache.hadoop:hadoop-hdfs-client
CVE-2020-11002 Vulnerability in maven package io.dropwizard:dropwizard-validation
CVE-2022-30506 Vulnerability in maven package net.mingsoft:ms-mcms
CVE-2016-1000352 Vulnerability in maven package org.bouncycastle:bcprov-jdk15on