3 matches found
CVE-2017-16062
node-tkinter was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm...
CVE-2017-16062
node-tkinter was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm...
CVE-2017-16062
CVE-2017-16062 relates to the npm package node-tkinter, which is described as malware that steals environment variables and sends them to attacker-controlled locations. The package has been unpublished from the npm registry. Practical impact stated across sources is the exposure of environment va...