Cisco NX-OS Zero-Day Command Injection Vulnerability Under Active Exploitation

A severe vulnerability in the Command Line Interface (CLI) of Cisco NX-OS Software is currently being actively exploited, enabling attackers to execute arbitrary commands as root on compromised devices. This zero-day flaw, identified as CVE-2024-20399, poses a significant risk to network security, particularly for organizations using Cisco’s Nexus and MDS series switches.

Source