Description
opencv.js was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.
Remediation
References
https://nodesecurity.io/advisories/505
Related Vulnerabilities
CVE-2022-36437 Vulnerability in maven package com.hazelcast:hazelcast
CVE-2019-5480 Vulnerability in npm package statichttpserver
CVE-2017-0783 Vulnerability in maven package org.apache.openmeetings:openmeetings-web
CVE-2022-31183 Vulnerability in maven package co.fs2:fs2-io_sjs1_2.13
CVE-2019-10312 Vulnerability in maven package org.jenkins-ci.plugins:ansible-tower