2 matches found
Vulnerability discovered in Cisco ACI Multi-Site CloudSec Encryption
Cisco has discovered in internal testing that the encryption as used with ACI Multi-Site CloudSec is not sufficient to provide adequate protection in the event of a man-in-the-middle attack. A malicious party capable of tapping the encrypted traffic between two ACI sites, and has sufficient...
The vulnerability of the CloudSec Encryption function in the ACI mode of the Cisco NX-OS operating system for Cisco Nexus series 9332C, 9364C, and 9500 switches allows a malicious actor to gain unauthorized access to read, modify, or delete data.
The vulnerability of the CloudSec Encryption function in the ACI mode of the Cisco NX-OS operating system for Cisco Nexus series 9332C, 9364C, and 9500 switches is related to the incorrect use of the data encryption algorithm. Exploiting this vulnerability may allow an attacker to gain unauthoriz...