China’s ‘Velvet Ant’ Hackers Caught Exploiting New Zero-Day in Cisco Devices

The vulnerability, known as CVE-2024-20399, affects Cisco NX-OS software used for Nexus-series switches. Sygnia discovered the vulnerability during an investigation into the threat group Velvet Ant.