Description
aegir is a module to help automate JavaScript project management. Version 12.0.0 through and including 12.0.7 bundled and published to npm the user (that performed a aegir-release) GitHub token.
Remediation
References
https://nodesecurity.io/advisories/546
Related Vulnerabilities
CVE-2016-1000220 Vulnerability in npm package kibana
CVE-2021-21266 Vulnerability in maven package org.openhab.addons.bundles:org.openhab.binding.ihc
CVE-2018-12432 Vulnerability in maven package net.bull.javamelody:javamelody-core
CVE-2020-2283 Vulnerability in maven package org.jenkins-ci.plugins:liquibase-runner
CVE-2020-26939 Vulnerability in maven package org.bouncycastle:bcprov-ext-jdk15to18