6.2 Medium
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
61.9%
It was discovered that the npm command-line interface mishandled certain sensitive information. An attacker could use this vulnerability to collect authentication information that could be used to impersonate other users.
ubuntu.com/security/CVE-2016-3956
ubuntu.com/security/notices/USN-4785-1