Description
smb was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.
Remediation
References
https://nodesecurity.io/advisories/518
Related Vulnerabilities
CVE-2021-34082 Vulnerability in npm package proctree
CVE-2018-16487 Vulnerability in npm package lodash.merge
CVE-2021-32809 Vulnerability in maven package org.webjars.npm:ckeditor4
CVE-2022-43421 Vulnerability in maven package org.jenkins-ci.plugins:tuleap-git-branch-source
CVE-2023-48711 Vulnerability in maven package org.webjars.npm:google-translate-api-browser