Traffic Intelligence feeds, which use HTTPS, do not verify the remote endpoint identity, allowing for potential data poisoning. (CVE-2022-34865)
Impact
An attacker with a network position that allows them to intercept network traffic may be able to read and/or modify data in transit that is used for Traffic Intelligence feeds.
Note: You can find the Traffic Intelligence feeds configuration in the Configuration utility by going toTraffic Intelligence>Categories>Feed List.