Cisco ACI Multi-Site CloudSec Encryption Information Disclosure Vulnerability — CISCO-SA-ACI-CLOUDSEC-ENC-VS5WN2SX
Cisco · Cisco · CISCO-SA-ACI-CLOUDSEC-ENC-VS5WN2SX
ID
CISCO-SA-ACI-CLOUDSEC-ENC-VS5WN2SX
CISCO-SA-ACI-CLOUDSEC-ENC-VS5WN2SX
Date
Activity
Source
Cisco
Cisco
Vendor
Cisco
Cisco
Threat
high
high
Summary
A vulnerability in the Cisco ACI Multi-Site CloudSec encryption feature of Cisco Nexus 9000 Series Fabric Switches in ACI mode could allow an unauthenticated, remote attacker to read or modify intersite encrypted traffic. This vulnerability is due to an issue with the implementation of the ciphers that are used by the CloudSec encryption feature on affected switches. An attacker with an on-path position between the…
Product
Cisco ACI Multi-Site CloudSec Encryption Information Disclosure
What to do
General, cautious steps (verify details in the official source):
- Prioritize patching or mitigation immediately (treat as actively risky).
- Identify affected product versions in your inventory and verify whether you are impacted.
- Apply vendor patches/updates or recommended mitigations as soon as available.
- Read the official advisory for exact affected versions and remediation steps.