Description
`node-fabric` was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.
Remediation
References
https://nodesecurity.io/advisories/489
Related Vulnerabilities
CVE-2021-33587 Vulnerability in npm package css-what
CVE-2023-36478 Vulnerability in maven package org.eclipse.jetty:jetty-http
CVE-2017-3162 Vulnerability in maven package org.apache.hadoop:hadoop-hdfs
CVE-2022-31192 Vulnerability in maven package org.dspace:dspace-jspui
CVE-2020-5289 Vulnerability in maven package com.yahoo.elide:elide-core