2023-07-13 18:10:46
US technology company Cisco recently released a security advisory warning its users of a bug in some of its data center switching equipment. This vulnerability could allow hackers to read and modify encrypted traffic.
Cisco: Bug Affects Nexus 9000 Series Switch Models
Cisco regularly performs internal security testing. During one of these operations, the company’s researchers discovered a vulnerability classified as high severity. Tracked under CVE-2023-20185, this bug was discovered in Nexus 9000 series switches.
The vulnerability could allow attackers to compromise encryption. In other words, the bug on Cisco equipment would allow it to read and modify encrypted traffic, the company explains. It adds that the vulnerability affects its application-centric infrastructure (ACI) multi-site CloudSec encryption.
Cisco had not released any software updates to address the vulnerability and so far there is no workaround to address this flaw. The vendor has advised its customers (those using Cisco ACI Multi-Site CloudSec encryption feature for Nexus 9332C, Nexus 9364C switches and Nexus N9K-X9736C-FX line card) to disable it.
A cipher implementation problem
According to Cisco, the vulnerability was caused by an issue with the implementation of the ciphers used by the CloudSec encryption feature on the affected switches.
The Cisco ACI Multi-Site CloudSec encryption feature of the Nexus 9000 series switches is in Application Centric Infrastructure (ACI) mode. This is typically deployed in data centers to control physical and virtual networks.
Cybersecurity experts are worried about the vendor’s new vulnerability. They expressed concern about this bug on Cisco switches and the lack of software updates to address it. In the meantime, the US vendor recommends that customers contact their support organization to evaluate alternative options to deactivation.
1689298757
#Cisco #reveals #bug #data #center #switches