PT-2018-6078 · Npm · Sqlite.Js

Publicado

2018-06-04

·

Atualizado

2019-10-09

·

CVE-2017-16050

CVSS v2.0

5.0

Média

VetorAV:N/AC:L/Au:N/C:P/I:N/A:N
Name of the Vulnerable Software and Affected Versions: sqlite.js (affected versions not specified)
Description: The issue concerns a malicious module named sqlite.js that was published with the intent to hijack environment variables, stealing them and sending the information to attacker-controlled locations. All versions of this module have been unpublished from the npm registry.
Recommendations: To address the issue, follow these steps:
  1. Delete the sqlite.js package from your environment.
  2. Clear your npm cache.
  3. Ensure the package is not present in any other package.json files on your system.
  4. Regenerate your registry credentials, tokens, and any other sensitive credentials that may have been exposed via environment variables. Additionally, review any services that may have been exposed via credentials in your environment variables for indicators of compromise.

Correção

RCE

Information Disclosure

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-506CWE-200

Identificadores relacionados

CVE-2017-16050
GHSA-6F34-PQ9F-36VF

Produtos afetados

Sqlite.Js