The SSL functionality in Cisco NX-OS on the Nexus 1000V does not properly verify X.509 certificates, which allows man-in-the-middle malicious users to spoof servers, and intercept or modify Virtual Supervisor Module (VSM) to VMware vCenter communication, via a crafted certificate, aka Bug ID CSCud14837.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
cisco nx-os - |
||
cisco nexus_1000v - |