Critical active threat
CVE-2024-20399 Cisco NX-OS Command Injection
- Actively exploited (CISA KEV)
- Listed on CISA KEV
- Network edge / SD-WAN deployments affected
Cisco NX-OS Command Injection is on CISA KEV — confirmed in-the-wild exploitation. Expect continued targeting while the issue remains on the catalog.