Description
node-opencv was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.
Remediation
References
https://nodesecurity.io/advisories/506
Related Vulnerabilities
CVE-2021-33587 Vulnerability in npm package css-what
CVE-2022-24847 Vulnerability in maven package org.geoserver:gs-main
CVE-2020-28269 Vulnerability in npm package field
CVE-2017-17068 Vulnerability in npm package auth0-js
CVE-2017-2582 Vulnerability in maven package org.keycloak:keycloak-saml-core