Description
openssl.js was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.
Remediation
References
https://nodesecurity.io/advisories/504
Related Vulnerabilities
CVE-2023-48796 Vulnerability in maven package org.apache.dolphinscheduler:dolphinscheduler-master
CVE-2017-16082 Vulnerability in npm package pg
CVE-2017-16069 Vulnerability in npm package nodeffmpeg
CVE-2017-12159 Vulnerability in maven package org.keycloak:keycloak-services
CVE-2022-45386 Vulnerability in maven package org.jenkins-ci.plugins:violations