PT-2018-6088 · Npm · Babelcli

Published

2018-06-07

Updated

2019-10-09

CVE-2017-16060

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions: babelcli (affected versions not specified)

Description: The issue concerns a malicious module named babelcli that was published with the intent to hijack environment variables, specifically designed to steal them and send the information to attacker-controlled locations. All versions of this package have been removed from the npm registry.

Recommendations: To address the issue, follow these steps:

Delete the babelcli package from your environment.
Clear your npm cache.
Ensure the package is not present in any other package.json files on your system.
Regenerate your registry credentials, tokens, and any other sensitive credentials that may have been exposed via environment variables. Additionally, review any services that may have been compromised due to exposed credentials, such as databases, for indicators of compromise.

Fix

RCE

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-506CWE-200

Related Identifiers

CVE-2017-16060

GHSA-72HV-RP4Q-Q7F3

Affected Products

Babelcli

PT-2018-6088 · Npm · Babelcli

CVE-2017-16060

Weakness Enumeration

Related Identifiers

Affected Products

References · 5