CVE-2021-1134

Name of the Vulnerable Software and Affected Versions Cisco DNA Center Software (affected versions not specified)

Description The issue is related to an incomplete validation of the X.509 certificate used when establishing a connection between DNA Center and an ISE server. This could allow an unauthenticated, remote attacker to gain unauthorized access to sensitive data by supplying a crafted certificate, potentially intercepting communications between the ISE and DNA Center, and viewing or altering sensitive information about connected clients.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.