High7.4Cisco Updated
Cisco ACI Multi-Site CloudSec Encryption Information Disclosure Vulnerability
cisco-sa-aci-cloudsec-enc-Vs5Wn2sX Published Apr 24, 2026Updated by vendor Apr 24, 2026
CVE-2023-20185
Affected products & platforms
CiscoSwitchesNexusNX-OSNexus 9000
Summary
A vulnerability in the Cisco ACI Multi-Site CloudSec encryption feature of Cisco Nexus 9000 Series Fabric Switches in ACI mode could allow an unauthenticated, remote attacker to read or modify intersite encrypted traffic.
Affected versions
- Scope: This vulnerability affects Cisco Nexus 9000 Series Fabric Switches in ACI mode that are running releases 14.0 and later if they are part of a Multi-Site topology and have the CloudSec encryption feature enabled. Determine the Status of the CloudSec Feature
Official advisory · high-confidence parse· fetched 1 day ago·verify at source
Mitigation checklist
Temporary workarounds
- There are no workarounds that address this vulnerability.
Official advisory · high-confidence parse· fetched 1 day ago·verify at source
Discussion(0)
No comments yet. Share field notes, upgrade gotchas, or questions — verify against the vendor advisory before acting on community advice.
Sign in to join the discussion.