Lucene search
+L

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 7:50 a.m.8 views

CVE-2024-20399

A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated user in possession of Administrator credentials to execute arbitrary commands as root on the underlying operating system of an affected device. This vulnerability is due to insufficient validation of arguments that ar...

6.7CVSS7AI score0.04271EPSS
Exploits1References1
The Hacker News
The Hacker News
added 2024/08/22 4:13 p.m.39 views

Chinese Hackers Exploit Zero-Day Cisco Switch Flaw to Gain System Control

Details have emerged about a China-nexus threat group's exploitation of a recently disclosed, now-patched security flaw in Cisco switches as a zero-day to seize control of the appliances and evade detection. The activity, attributed to Velvet Ant, was observed early this year and involved the...

6.7CVSS8.2AI score0.04271EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2024/07/09 12:0 a.m.33 views

Cisco NX-OS Software CLI Command Injection Vulnerability (CVE-2024-20399)

A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker to execute arbitrary commands as root on the underlying operating system of an affected device. This vulnerability is due to insufficient validation of arguments that are passed to specific configurati...

6.7CVSS8.1AI score0.04271EPSS
Exploits1References2
The Hacker News
The Hacker News
added 2024/07/02 4:48 a.m.80 views

Chinese Hackers Exploiting Cisco Switches Zero-Day to Deliver Malware

A China-nexus cyber espionage group named Velvet Ant has been observed exploiting a zero-day flaw in Cisco NX-OS Software used in its switches to deliver malware. The vulnerability, tracked as CVE-2024-20399 CVSS score: 6.0, concerns a case of command injection that allows an authenticated, local...

9.8CVSS6.7AI score0.82714EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2024/07/01 12:0 a.m.48 views

Cisco NX-OS Software CLI Comm Injection (cisco-sa-nxos-cmd-injection-xD9OhyOP)

According to its self-reported version, Cisco NX-OS Software is affected by a vulnerability. - A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker to execute arbitrary commands as root on the underlying operating system of an affected device. This...

6.7CVSS8.1AI score0.04271EPSS
Exploits1References6
Rows per page
Query Builder