漏洞标题
思科应用策略基础设施控制器可恢复加密密钥漏洞
漏洞描述信息
Cisco应用策略基础设施控制器可恢复加密密钥漏洞
CVSS信息
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
漏洞类别
N/A
漏洞标题
Cisco Application Policy Infrastructure Controller Recoverable Encryption Key Vulnerability
漏洞描述信息
A vulnerability in Cisco Application Policy Infrastructure Controller (APIC) Software could allow an unauthenticated, local attacker with physical access to obtain sensitive information from an affected device. The vulnerability is due to insecure removal of cleartext encryption keys stored on local partitions in the hard drive of an affected device. An attacker could exploit this vulnerability by retrieving data from the physical disk on the affected partition(s). A successful exploit could allow the attacker to retrieve encryption keys, possibly allowing the attacker to further decrypt other data and sensitive information on the device, which could lead to the disclosure of confidential information.
CVSS信息
N/A
漏洞类别
密钥管理错误
漏洞标题
Cisco Application Policy Infrastructure Controller 加密问题漏洞
漏洞描述信息
Cisco Application Policy Infrastructure Controller(APIC)是美国思科(Cisco)公司的一款自动化的基础架构部署和治理解决方案。 Cisco APIC中存在加密问题漏洞。该漏洞源于网络系统或产品未正确使用相关密码算法,导致内容未正确加密、弱加密、明文存储敏感信息等。
CVSS信息
N/A
漏洞类别
加密问题