Description
node-opensl was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.
Remediation
References
https://nodesecurity.io/advisories/502
Related Vulnerabilities
CVE-2023-26486 Vulnerability in maven package org.webjars.npm:vega-functions
CVE-2020-2157 Vulnerability in maven package org.jenkins-ci.plugins:skytap
CVE-2018-1000864 Vulnerability in maven package org.jenkins-ci.main:jenkins-core
CVE-2020-2196 Vulnerability in maven package org.jenkins-ci.plugins:selenium
CVE-2018-13003 Vulnerability in maven package net.opentsdb:opentsdb