CVE-2022-23812P2CRITICALCVSS 9.8Exploited≥ 10.1.1, < 10.1.3·≥ 11.0.0+2 more2022-03-16
CVE-2022-23812 [CRITICAL] CVE-2022-23812: This affects the package node-ipc from 10.1.1 and before 10.1.3. This package contains malicious cod
This affects the package node-ipc from 10.1.1 and before 10.1.3. This package contains malicious code, that targets users with IP located in Russia or Belarus, and overwrites their files with a heart emoji. **Note**: from versions 11.0.0 onwards, instead of having malicious code directly in the source of this package, node-ipc imports the peacenotwar pack
ghsanvdosv