Description
node-opencv was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.
Remediation
References
https://nodesecurity.io/advisories/506
Related Vulnerabilities
CVE-2019-3580 Vulnerability in maven package org.openrefine:openrefine
CVE-2022-23710 Vulnerability in maven package org.elasticsearch:elasticsearch
CVE-2020-7021 Vulnerability in maven package org.elasticsearch:elasticsearch
CVE-2022-45921 Vulnerability in maven package io.fusionauth:fusionauth-java-client