npm Update
1847Warning Date
Severity Level
Warning Number
Target Sector
15 December, 2020
● Low
2020-2198
All
Description:
npm has released a security update to address a vulnerability in the following product:
- ini
- 1.0.0 1.0.1 1.0.2 1.0.3 1.0.4 1.0.5 1.1.0 1.2.0 1.2.1 1.3.0 1.3.1 1.3.2 1.3.3 1.3.4 1.3.5
Threats:
Attacker could exploit this vulnerability by executing arbitrary code.
Best practice and Recommendations:
The CERT team encourages users to review npm security advisory and apply the necessary update: