Description
opencv.js was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.
Remediation
References
https://nodesecurity.io/advisories/505
Related Vulnerabilities
CVE-2020-9492 Vulnerability in maven package org.apache.hadoop:hadoop-hdfs-client
CVE-2020-28502 Vulnerability in npm package xmlhttprequest
CVE-2023-37949 Vulnerability in maven package io.jenkins.plugins:macstadium-orka
CVE-2019-1003039 Vulnerability in maven package org.jenkins-ci.plugins:appdynamics-dashboard
CVE-2020-2299 Vulnerability in maven package org.jenkins-ci.plugins:active-directory