Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The SSL functionality in Cisco NX-OS on the Nexus 1000V does not properly verify X.509 certificates, which allows man-in-the-middle attackers to spoof servers, and intercept or modify Virtual Supervisor Module (VSM) to VMware vCenter communication, via a crafted certificate, aka Bug ID CSCud14837.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Cisco NX-OS on the Nexus 1000V SSL功能安全漏洞
Vulnerability Description
Cisco NX-OS是美国思科(Cisco)公司的一套面向数据中心的操作系统。 Cisco NX-OS on the Nexus 1000V中的SSL功能中存在漏洞,该漏洞源于程序没有正确验证X.509证书。中间人攻击者可通过特制的证书利用该漏洞欺骗服务器,拦截或修改Virtual Supervisor Module (VSM)与VMware vCenter之间的通信。
CVSS Information
N/A
Vulnerability Type
N/A