The two zero-day vulnerabilities, CVE-2024-20353 and CVE-2024-20359, affect Cisco's Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) solutions, enabling denial of service attacks and local code execution.
Researchers discovered the ArcaneDoor campaign in January 2024, attributing the attacks to a threat actor group tracked as UAT4356 or STORM-1849, who had been testing and developing exploits since at least July 2023.
[
add
]
[
|
|
...
]