Cisco’s Smart Licensing Utility has been targeted by hackers despite being patched half a year ago. The two critical vulnerabilities, CVE-2024-20439 and CVE-2024-20440, can allow attackers to collect sensitive information or manage services on a system running the software.
According to Johannes Ullrich of SANS Technology Institute, hackers are attempting to exploit these vulnerabilities using default credentials. It’s unclear what the attackers are after, but they also seem to be targeting other systems, including IoT devices.
The flaws were discovered internally and previously did not indicate in-the-wild exploitation. Cisco has encouraged customers to implement fixed software, stating that no direct reports of malicious use have been received.
Source: https://www.securityweek.com/hackers-target-cisco-smart-licensing-utility-vulnerabilities