CVE-2021-1134

CWE-295Improper Certificate Validation4 documents4 sources
Severity
7.4HIGH
EPSS
0.3%
top 49.02%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Cisco Catalyst CenterCisco Cisco Digital Network Architecture Center (dna Center)
Timeline
PublishedJun 29
Latest updateMay 24

Description

A vulnerability in the Cisco Identity Services Engine (ISE) integration feature of the Cisco DNA Center Software could allow an unauthenticated, remote attacker to gain unauthorized access to sensitive data. The vulnerability is due to an incomplete validation of the X.509 certificate used when establishing a connection between DNA Center and an ISE server. An attacker could exploit this vulnerability by supplying a crafted certificate and could then intercept communications between the ISE and

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:NExploitability: 2.2 | Impact: 5.2

Affected Packages2 packages

NVDcisco/catalyst_center< 2.2.2.1

🔴Vulnerability Details

2
GHSA
GHSA-c46x-8q9c-r3vx: A vulnerability in the Cisco Identity Services Engine (ISE) integration feature of the Cisco DNA Center Software could allow an unauthenticated, remot2022-05-24
CVEList
Cisco DNA Center Certificate Validation Vulnerability2021-06-29

📋Vendor Advisories

1
Cisco
Cisco DNA Center Certificate Validation Vulnerability2021-06-16
CVE-2021-1134 (HIGH CVSS 7.4) | A vulnerability in the Cisco Identi | cvebase.io