Morgan Jones

**Name of the Vulnerable Software and Affected Versions** Node.js versions prior to 19.2.0 Node.js versions prior to 18.14.1 Node.js versions prior to 16.19.1 Node.js versions prior to 14.21.3 **Description** A cryptographic issue exists that may not clear the OpenSSL error stack after certain operations, potentially leading to false positive errors during subsequent cryptographic operations on the same thread. This could be exploited to cause a denial of service. The issue is related to errors in data encryption. **Recommendations** For versions prior to 19.2.0, update to version 19.2.0 or later to resolve the issue. For versions prior to 18.14.1, update to version 18.14.1 or later to resolve the issue. For versions prior to 16.19.1, update to version 16.19.1 or later to resolve the issue. For versions prior to 14.21.3, update to version 14.21.3 or later to resolve the issue.