Description
openssl.js was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.
Remediation
References
https://nodesecurity.io/advisories/504
Related Vulnerabilities
CVE-2023-46651 Vulnerability in maven package io.jenkins.plugins:warnings-ng
CVE-2017-7663 Vulnerability in maven package org.apache.openmeetings:openmeetings-core
CVE-2020-7696 Vulnerability in npm package react-native-fast-image
CVE-2016-3081 Vulnerability in maven package org.apache.struts.xwork:xwork-core
CVE-2019-1003051 Vulnerability in maven package org.jvnet.hudson.plugins:ircbot