Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ciscoCiscoCISCO-SA-DCNM-CERT-CHECK-BDZZV9T3
HistoryJan 20, 2021 - 4:00 p.m.

Cisco Data Center Network Manager Certificate Validation Vulnerabilities

2021-01-2016:00:00
tools.cisco.com
46

0.001 Low

EPSS

Percentile

37.2%

JSON

Multiple vulnerabilities in Cisco Data Center Network Manager (DCNM) could allow an attacker to spoof a trusted host or construct a man-in-the-middle attack to extract sensitive information or alter certain API requests.

These vulnerabilities are due to insufficient certificate validation when establishing HTTPS requests with the affected device.

For more information about these vulnerabilities, see the Details [“#details”] section of this advisory.

Cisco has released software updates that address these vulnerabilities. There are no workarounds that address these vulnerabilities.

This advisory is available at the following link:
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-dcnm-cert-check-BdZZV9T3 [“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-dcnm-cert-check-BdZZV9T3”]

Affected configurations

Vulners
Node
ciscodata_center_network_managerMatchany
OR
ciscodata_center_network_managerMatchany

Related

mscve 1
cve 15
nvd 15
prion 15
cvelist 15
attackerkb 1
nessus 4
openvas 4
mskb 4
kaspersky 1
avleonov 1
mscve
mscve
Windows Kernel Elevation of Privilege Vulnerability
2020-06-09 07:00:00
cve
cve
CVE-2021-1277
2021-01-20 20:15:16
CVE-2021-1276
2021-01-20 20:15:16
CVE-2020-1262
2020-06-09 20:15:17
nvd
nvd
CVE-2021-1277
2021-01-20 20:15:16
CVE-2021-1276
2021-01-20 20:15:16
CVE-2020-1264
2020-06-09 20:15:17
prion
prion
Design/Logic Flaw
2021-01-20 20:15:00
Design/Logic Flaw
2021-01-20 20:15:00
Privilege escalation
2020-06-09 20:15:00
cvelist
cvelist
CVE-2021-1276 Cisco Data Center Network Manager Certificate Validation Vulnerabilities
2021-01-20 00:00:00
CVE-2021-1277 Cisco Data Center Network Manager Certificate Validation Vulnerabilities
2021-01-20 00:00:00
CVE-2020-1274
2020-06-09 19:43:48
attackerkb
attackerkb
CVE-2020-0986
2020-06-09 00:00:00
nessus
nessus
KB4561621: Windows 10 Version 1803 June 2020 Security Update
2020-06-09 00:00:00
KB4557957: Windows 10 Version 2004 June 2020 Security Update
2020-06-10 00:00:00
KB4561608: Windows 10 Version 1809 and Windows Server 2019 June 2020 Security Update
2020-06-09 00:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB4561608)
2020-06-10 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4557957)
2020-06-10 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4560960)
2020-06-10 00:00:00
mskb
mskb
June 9, 2020—KB4557957 (OS Build 19041.329)
2020-06-09 07:00:00
June 9, 2020—KB4561621 (OS Build 17134.1550)
2020-06-09 07:00:00
June 9, 2020—KB4561608 (OS Build 17763.1282)
2020-06-09 07:00:00
kaspersky
kaspersky
KLA11807 Multiple vulnerabilities in Microsoft Windows
2020-06-09 00:00:00
avleonov
avleonov
Microsoft Patch Tuesday June 2020: The Bleeding Ghost of SMB
2020-06-23 01:31:46

0.001 Low

EPSS

Percentile

37.2%

JSON
Related for CISCO-SA-DCNM-CERT-CHECK-BDZZV9T3
mscve1cve15nvd15prion15cvelist15attackerkb1nessus4openvas4mskb4kaspersky1avleonov1