A threat actor linked to China is exploiting a zero-day vulnerability in Cisco NX-OS software. Known as Velvet Ant, the actor is targeting a command injection vulnerability affecting various Cisco Nexus devices. The vulnerability, CVE-2024-20399, has a CVSS score of 6.0, with the threat actor deploying custom malware. Sygnia researchers uncovered the exploit during an … Read more
A suspected threat actor with ties to China, known as Velvet Ant, has been actively exploiting a zero-day vulnerability in Cisco NX-OS software, according to researchers at Sygnia. The vulnerability, identified as CVE-2024-20399, affects a wide range of Cisco Nexus devices and has a CVSS score of 6.0. The threat actor is highly sophisticated and … Read more
The China-Nexus Velvet Ant hackers exploited a bug in April that allowed them to execute arbitrary commands as root on Cisco devices. This zero-day vulnerability, tracked as CVE-2024-20399, was discovered by cybersecurity company Sygnia and patched by Cisco on Monday. The threat group remotely connected to Cisco’s NX-OS software used in switches and executed malicious … Read more
Cisco recently patched a zero-day vulnerability that was exploited by a nation-state threat group known as Velvet Ant, believed to be linked to China. The vulnerability, tracked as CVE-2024-20399, allows an authenticated, local attacker to execute arbitrary commands as root on affected devices running Cisco’s NX-OS software. This vulnerability, known as a command injection vulnerability, … Read more
Cisco has released patches for several Nexus switch series to address a vulnerability that allows attackers to execute bash commands in the underlying operating system by exploiting an insufficient validation of arguments passed with configuration commands. This flaw, identified as CVE-2024-20399, affects various Cisco switches including MDS 9000 Series Multilayer Switches, Nexus 3000 Series Switches, … Read more
Cisco has recently patched a medium severity zero-day vulnerability in the command-line interface (CLI) of their Nexus operating system (NX-OS) software. This vulnerability could potentially allow an attacker with valid administrator credentials for the Nexus console to execute arbitrary commands on the Linux operating system with root privileges. In their advisory released on July 1st, … Read more
Cisco switch owners should be aware of a just-released patch for a vulnerability that was exploited in April to install malware on Nexus switches. The vulnerability, known as CVE-2024-20399, allows local authenticated attackers to execute arbitrary commands as root. While the severity rating is moderate at 6.0, the exploit was used by a group called … Read more
Cisco has fixed an issue in a network management platform that allows attackers to execute commands on affected devices’ operating systems. The flaw, known as CVE-2024-20399 and rated as medium risk, can be exploited by authenticated users. The bug is located in the Cisco NX-OS Software CLI, enabling attackers to run arbitrary commands as root. … Read more
A recent security threat has emerged as Chinese hackers have been found exploiting a new zero-day vulnerability in Cisco NX-OS. This hacking activity was reported by SC Media, revealing concerns about potential cyber attacks on an undetermined scale. The zero-day vulnerability in Cisco NX-OS poses a significant risk to organizations and individuals who use this … Read more
Cisco recently released a patch for a zero-day vulnerability in its NX-OS operating system that was exploited by Chinese cyber spies. The vulnerability allowed attackers to remotely execute malicious code on affected devices. The exploitation of this vulnerability was reportedly part of a larger cyber espionage campaign conducted by Chinese threat actors. Cisco’s prompt response … Read more