CVE-2021-1277

Name of the Vulnerable Software and Affected Versions Cisco Data Center Network Manager (DCNM) (affected versions not specified)

Description The issue is related to insufficient certificate validation when establishing HTTPS requests with the affected device, allowing an attacker to potentially spoof a trusted host or construct a man-in-the-middle attack. This could enable the extraction of sensitive information or alteration of certain API requests. The vulnerability is associated with errors in the certificate authentication procedure.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.