Apache Pulsar Trust Management Issue Vulnerability

Apache Pulsar is an Apache Foundation distributed messaging platform for cloud environments that integrates messaging, storage, and lightweight functional computing. The software supports multi-tenancy, persistent storage, multi-room cross-regional data replication, with strong consistency, high throughput and low latency highly scalable streaming data storage features. Apache Pulsar has a security vulnerability that stems from host name authentication errors in Java clients and agents, which can be exploited by attackers to publicly authenticate data through a man-in-the-middle attack.