The host is installed with Node.js 18.x before 18.12.1, 19.x before 19.0.1 and is prone to an email address variable length buffer overflow vulnerability. A flaw is present in the application, which fails to properly handle stack overflow while verifying the name constraint of the X.509 certificate. On successful exploitation, an attacker can craft a malicious email address in a certificate to overflow an arbitrary number of bytes containing the '.' character (decimal 46) on the stack. This buffer overflow could result in a crash(causing a denial of service).