CISA adds Cisco ASA and FTD and CrushFTP VFS flaws to its Known Exploited Vulnerabilities catalog
Security Affairs
APRIL 25, 2024
The experts have yet to identify the initial attack vector, however, they discovered the threat actors exploited two vulnerabilities ( CVE-2024-20353 (denial of service) and CVE-2024-20359 (persistent local code execution)) as zero-days in these attacks. This backdoor survives reboots and upgrades, allowing threat actors to maintain control.
Let's personalize your content