Description
node-opensl was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.
Remediation
References
https://nodesecurity.io/advisories/502
Related Vulnerabilities
CVE-2023-37952 Vulnerability in maven package com.mabl.integration.jenkins:mabl-integration
CVE-2021-43788 Vulnerability in npm package nodebb
CVE-2023-2138 Vulnerability in npm package @nuxtlabs/github-module
CVE-2020-1936 Vulnerability in maven package org.apache.ambari:ambari-web
CVE-2016-15011 Vulnerability in maven package be.e_contract.dssp:dssp-client