Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ciscoCiscoCISCO-SA-20190821-HYPERFLEX-SSLKEY
HistoryAug 21, 2019 - 4:00 p.m.

Cisco HyperFlex Static SSL Key Vulnerability

2019-08-2116:00:00
tools.cisco.com
71

EPSS

0.001

Percentile

47.9%

JSON

A vulnerability in Cisco HyperFlex Software could allow an unauthenticated, remote attacker to perform a man-in-the-middle attack.

The vulnerability is due to insufficient key management. An attacker could exploit this vulnerability by obtaining a specific encryption key for the cluster. A successful exploit could allow the attacker to perform a man-in-the-middle attack against other nodes in the cluster.

Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.

This advisory is available at the following link:
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190821-hyperflex-sslkey [“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190821-hyperflex-sslkey”]

Affected configurations

Vulners
Node
ciscohyperflex_hx-series_softwareMatchany
OR
ciscohyperflex_hx-series_softwareMatchany
VendorProductVersionCPE
ciscohyperflex_hx-series_softwareanycpe:2.3:a:cisco:hyperflex_hx-series_software:any:*:*:*:*:*:*:*

Related

prion 1
cvelist 1
nvd 1
cve 1
prion
prion
Design/Logic Flaw
2019-08-21 18:15:00
cvelist
cvelist
CVE-2019-12621 Cisco HyperFlex Static SSL Key Vulnerability
2019-08-21 18:00:28
nvd
nvd
CVE-2019-12621
2019-08-21 18:15:13
cve
cve
CVE-2019-12621
2019-08-21 18:15:13

EPSS

0.001

Percentile

47.9%

JSON
Related for CISCO-SA-20190821-HYPERFLEX-SSLKEY
prion1cvelist1nvd1cve1