"Node.js is a quite popular open source javascript app deveopment environment, so the vulnerability is likely quite widespread.
"The most effective defense again this latest threat is to upgrade the server application to the latest software rev. Certainly, there are many other security reasons to upgrade to the latest revision including potential breach vulnerabilities.
"Likely exploitations would be DoS for ransom. But there seems to be some full compromise vulnerability with some of the versions that could result in breach activity."