CVE-2018-7162

Name of the Vulnerable Software and Affected Versions Node.js versions 9.x through 10.x

Description The issue allows an attacker to cause a denial of service (DoS) by crashing a node process that provides an http server supporting TLS server. This can be accomplished by sending duplicate or unexpected messages during the handshake.

Recommendations For Node.js versions 9.x through 10.x, update the TLS implementation to address the issue.