3 matches found
@ekyc_qoobiss/qbs-ect-cmp (>=4.7.16 <=4.7.140), @ekycsolutions/ml-js-sdk (>=0.0.9-alpha <=0.0.10-alpha.13) +13 more potentially affected by CVE-2017-16066 via opencv.js (=1.2.1)
opencv.js NPM version =1.2.1 is affected by a known vulnerability. The following packages have a transitive dependency on opencv.js and may be impacted: - @ekycqoobiss/qbs-ect-cmp =4.7.16, =0.0.9-alpha, =1.1.2, =0.3.1, =1.0.0, =0.7.1, =4.0.0, =2.0.1, =2.0.0, =1.11.0, =0.0.112, =0.1.7 Source cves:...
CVE-2017-16066
opencv.js was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm...
CVE-2017-16066
CVE-2017-16066 corresponds to opencv.js, a malicious npm module published to hijack environment variables. The vulnerability was acknowledged across multiple sources (NVD, ENISA, GHSA, osv) with the module unpublished by npm. Affected content specifies a malware intent affecting the runtime envir...