CVE-2021-1276

Multiple vulnerabilities in Cisco Data Center Network Manager (DCNM) could allow an attacker to spoof a trusted host or construct a man-in-the-middle attack to extract sensitive information or alter certain API requests. These vulnerabilities are due to insufficient certificate validation when establishing HTTPS requests with the affected device. For more information about these vulnerabilities, see the Details section of this advisory.

Severity	HIGH
CVSS	7.5
EPSS	0.12% EPSS low
CWE	CWE-295
KEV
Published	5 years ago
Modified	1 year ago

Public Affected Products

Product	Advisory	Evidence
Cisco Data Center Network Manager	cisco-sa-dcnm-cert-check-BdZZV9T3	Cisco CSAF · structured affected