Description
node-opencv was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.
Remediation
References
https://nodesecurity.io/advisories/506
Related Vulnerabilities
CVE-2020-7639 Vulnerability in npm package eivindfjeldstad-dot
CVE-2019-10746 Vulnerability in maven package org.webjars.npm:mixin-deep
CVE-2020-13942 Vulnerability in maven package org.apache.unomi:unomi-persistence-elasticsearch-core
CVE-2019-13127 Vulnerability in maven package org.webjars.bower:mxgraph
CVE-2020-35215 Vulnerability in maven package io.atomix:atomix