3 matches found
CVE-2017-16079
smb was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm...
CVE-2017-16079
smb was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm...
CVE-2017-16079
CVE-2017-16079 corresponds to the npm malware package described as the public smb package; it hijacked environment variables and exfiltrated them to attacker-controlled locations. All versions were unpublished from the npm registry. Connected records (GhSA/NVD/Veracode/OpenVAS) confirm the malwar...