Specific versions of the Java driver that support client-side field level encryption (CSFLE) fail to perform correct host name verification on the KMS serverโs certificate. This vulnerability in combination with a privileged network position active MITM attack could result in interception of traffi...
6.8CVSS
6.4AI Score
0.0005EPSS