npm Updates
1653Warning Date
Severity Level
Warning Number
Target Sector
1 September, 2021
● High
2021-3453
All
Description:
npm has released a security update to address a vulnerability in the following products:
- npmcli/arborist
- Tar
Threats:
Attacker could exploit these vulnerabilities by doing the following:
- Execute arbitrary code
Best practice and Recommendations:
The CERT team encourages users to review npm security advisory and apply the necessary updates: