Ongoing cyberattacks exploit critical vulnerabilities in Cisco Smart Licensing Utility

- Two critical security flaws in Cisco Smart Licensing Utility are currently being exploited, according to the SANS Internet Storm Center. - The vulnerabilities are: * CVE-2024-20439 (CVSS score: 9. 8) - An undocumented static user credential allows an attacker to log in to an affected system. * CVE-2024-20440 (CVSS score: 9. 8) - An overly detailed debug log file can be accessed by an attacker through a crafted HTTP request, leading to exposure of credentials used for API access. - Successful exploitation allows attackers to gain administrative access and obtain sensitive log files. The vulnerabilities affect versions 2. 0. 0, 2. 1. 0, and 2. 2. 0 but have been patched by Cisco in September 2024. Version 2. 3. 0 is not affected by these issues. - As of March 2025, attackers have been leveraging these vulnerabilities. Additionally, they are exploiting other flaws, including CVE-2024-0305 (CVSS score: 5. 3). The purpose of this attack campaign is still unclear, hence, users must apply patches for better security.