Vulnerability
Malicious code in chai-as-init (npm)
chai-as-init is a malicious npm package that when imported downloads a C2 dropper from https://api.npoint[.]io/c2e881b8bc0fe2121454 and executes it (similar to malware in to chai-await-test). --- _-= Per source details. Do not edit below this line.=-_ ## Source: amazon-inspector (86a5e85d8d41d2f731104422d3a8e4a73d02354250782e45389d28acc2332854) Package name impersonates chai-as-promised and ships a README copied from pino as cover. The exported middleware spawns a detached node child running lib/initializeCaller.js, which decodes a base64-encoded URL (https://ipcheck-hashed.vercel.app/api/auth/b4dadd6a26d820d08596) and POSTs the full process.env (`{...process.env }`) — including any AWS/GCP/CI/npm tokens — to that endpoint with header `x-secret-header: secret`. The HTTP response body is then passed to `new Function('require', response.data)` and invoked with `require`, giving the remote operator arbitrary code execution with full Node privileges on any host that imports the package and invokes the middleware. Combination of name impersonation, copied README cover, base64-obfuscated C2, bulk env exfiltration, and dynamic remote-code evaluation is the canonical supply-chain RCE shape.
No CVSS base score from NVD or GHSA yet. NVD typically scores within 24–72 hours of publication; GHSA usually within a day for OSS-flagged CVEs. Last record update .
For interim severity, fall back on KEV / EXPLOIT signals and the EPSS percentile (lower panel). Re-check this CVE after one cron tick — the score lands automatically when the source publishes.
FIRST.org publishes EPSS daily. Coverage isn't universal — pre-disclosure CVEs and reserved IDs don't carry an EPSS score until at least one exploitation signal lands. Score will appear within 24 hours of the next EPSS pull.
No exploitation, limited impact or prevalence