Description
node-opencv was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.
Remediation
References
https://nodesecurity.io/advisories/506
Related Vulnerabilities
CVE-2017-18214 Vulnerability in npm package moment
CVE-2018-11761 Vulnerability in maven package org.apache.tika:tika-core
CVE-2023-5104 Vulnerability in npm package nocodb
CVE-2020-8237 Vulnerability in maven package org.webjars.npm:json-bigint
CVE-2018-11695 Vulnerability in maven package org.webjars.npm:node-sass