Описание
Malicious Package in axios-http
This package contained malicious code. The package uploaded system information such as OS and hostname to a remote server.
Recommendation
Remove the package from your environment. There are no indications of further compromise.
Пакеты
Наименование
axios-http
npm
Затронутые версииВерсия исправления
>= 0.0.0
Отсутствует
9.8 Critical
CVSS3
Дефекты
CWE-506
9.8 Critical
CVSS3
Дефекты
CWE-506