undici is vulnerable to improper certificate validation. The vulnerability exists improper validations of the remote server certificate exposing request & response data which allows an attacker to create his own self-signed certificate to connect to the server over the network.