A specific version of the Node.js mongodb-client-encryption module does not perform correct validation of the KMS serverβs certificate. This vulnerability in combination with a privileged network position active MITM attack could result in interception of traffic between the Node.js driver and the ...
6.8CVSS
6.2AI Score
0.0005EPSS