CVE-2018-7162

All versions of Node.js 9.x and 10.x are vulnerable and the severity is HIGH. An attacker can cause a denial of service (DoS) by causing a node process which provides an http server supporting TLS server to crash. This can be accomplished by sending duplicate/unexpected messages during the handshake. This vulnerability has been addressed by updating the TLS implementation.
Configurations

Configuration 1

cpe:2.3:a:nodejs:node.js:*:*:*:*:-:*:*:*
cpe:2.3:a:nodejs:node.js:*:*:*:*:-:*:*:*

Information

Published : 2018-06-13 04:29

Updated : 2022-08-16 01:00


NVD link : CVE-2018-7162

Mitre link : CVE-2018-7162

Products Affected
No products.
CWE