CVE-2024-20399
Cisco NX-OS Command Injection Vulnerability
⚠ KEVEPSS 0.66%
Description
Cisco NX-OS contains a command injection vulnerability in the command line interface (CLI) that could allow an authenticated, local attacker to execute commands as root on the underlying operating system of an affected device.
How to fix CVE-2024-20399
No package mapping is available — consult the references below for vendor-specific guidance.
Is CVE-2024-20399 being exploited?
Yes — CVE-2024-20399 is on the CISA Known Exploited Vulnerabilities (KEV) catalog. Patch immediately.
Affected packages (0)
No package mapping in OSV.