Description
smb was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.
Remediation
References
https://nodesecurity.io/advisories/518
Related Vulnerabilities
CVE-2021-23397 Vulnerability in npm package @ianwalter/merge
CVE-2022-0219 Vulnerability in maven package io.github.skylot:jadx-core
CVE-2022-0691 Vulnerability in npm package url-parse
CVE-2021-23362 Vulnerability in npm package hosted-git-info
CVE-2019-10794 Vulnerability in npm package component-flatten