npm Update
1592Warning Date
Severity Level
Warning Number
Target Sector
17 December, 2020
● Medium
2020-2220
All
Description:
npm has released a security update to address a vulnerability in the following product:
- systeminformation
- Versions earlier than 4.31.1
Threats:
Attacker could exploit this vulnerability by injecting malicious commands.
Best practice and Recommendations:
The CERT team encourages users to review npm security advisory and apply the necessary update: