CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2013-1212

The SSL functionality in Cisco NX-OS on the Nexus 1000V does not properly verify X.509 certificates, which allows man-in-the-middle attackers to spoof servers, and intercept or modify Virtual Supervisor Module (VSM) to VMware vCenter communication, via a crafted certificate, aka Bug ID CSCud14837.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 39.6%

CVSS Severity

CVSS v2 Score 5.8

References

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-1212
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-1212

Products affected by CVE-2013-1212

Cisco » Nexus 1000v » Version: N/A

cpe:2.3:h:cisco:nexus_1000v:-
Cisco » Nx-Os » Version: N/A

cpe:2.3:o:cisco:nx-os:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2013-1212

Products

Pricing

Contact Us