CVE-2017-16066

High

opencv.js was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.

hackerone·CWE-506·Published 2018-06-07

CVSS

7.5

EPSS

0.01

KEV

Exploits

cve.orgen

123 chars

opencv.js was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.

NVDen

123 chars

opencv.js was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.

OSV.deven

123 chars

opencv.js was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.

GHSAen

123 chars

opencv.js was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.

NVDes

109 chars

"opencv.js" era un módulo malicioso publicado para secuestrar variables de entorno. Ha sido retirado por npm.

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	5.0	10.0	2.9	AV:N/AC:L/Au:N/C:P/I:N/A:N
3.0	Primary	NVD	7.5	3.9	3.6	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N