Security News > 2024 > July > Chinese Hackers Exploiting Cisco Switches Zero-Day to Deliver Malware
2024-07-02 04:48
A China-nexus cyber espionage group named Velvet Ant has been observed exploiting a zero-day flaw in Cisco NX-OS Software used in its switches to deliver malware. The vulnerability, tracked as CVE-2024-20399 (CVSS score: 6.0), concerns a case of command injection that allows an authenticated, local attacker to execute arbitrary commands as root on the underlying operating system of an affected
News URL
https://thehackernews.com/2024/07/chinese-hackers-exploiting-cisco.html
Related news
- Chinese Hackers Exploit Zero-Day Cisco Switch Flaw to Gain System Control (source)
- Chinese Hackers Target Japanese Firms with LODEINFO and NOOPDOOR Malware (source)
- Chinese Volt Typhoon hackers exploited Versa zero-day to breach ISPs, MSPs (source)
- South Korean hackers exploited WPS Office zero-day to deploy malware (source)
- Chinese hackers use new data theft malware in govt attacks (source)
- Hackers abuse free TryCloudflare to deliver remote access malware (source)
- Hackers breach ISP to poison software updates with malware (source)
- Week in review: VMware ESXi zero-day exploited, SMS Stealer malware targeting Android users (source)
- Chinese hackers compromised an ISP to deliver malicious software updates (source)
- North Korean hackers exploit VPN update flaw to install malware (source)
Related Vulnerability
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2024-07-01 | CVE-2024-20399 | OS Command Injection vulnerability in Cisco Nx-Os A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated user in possession of Administrator credentials to execute arbitrary commands as root on the underlying operating system of an affected device. This vulnerability is due to insufficient validation of arguments that are passed to specific configuration CLI commands. | 6.7 |