A specific version of the Node.js mongodb-client-encryption module does not perform correct validation of the KMS serverโs certificate. This vulnerability in combination with a privileged network position active MITM attack could result in interception of traffic between the Node.js driver and the....
6.8CVSS
6.4AI Score
0.0005EPSS