Advisory 83

Advisory 83: Cisco Vulnerability – CVE-2024-20439

Release Date: 31st of March 2025

Impact : HIGH / CRITICAL

TLP Rating: Clear

CERT Vanuatu (CERTVU) and the Department of Communication and Digital Transformation (DCDT) provide the following advisory.
This alert is relevant to Organizations who utilize the above products. This alert is intended to be understood by technical users.

What is it?

A Vulnerability in Cisco Smart Licensing Utility could allow an unauthenticated, remote attacker to log in to an affected system by using a static administrative credential. This vulnerability is due to an undocumented static user credential for an administrative account.

 

References

1.https://www.cisa.gov/known-exploited-vulnerabilities-catalog

2.https://www.cve.org/CVERecord?id=CVE-2024-20439