ArcaneDoor Vulnerabilities [CVE-2024-20353, CVE-2024-20359] – May 01, 2024 Jessica The ArcaneDoor vulnerabilities are part of a state-sponsored campaign targeting perimeter network devices from multiple vendors; these particular vulnerabilities were discovered during a Cisco customer’s incident response activities. While the initial access vector of this campaign was not determined, the resulting analysis yielded the discovery of two vulnerabilities impacting Cisco Adaptive Security Appliances (ASA): CVE-2024-20353, a remote denial of service vulnerability, and CVE-2024-20359, an arbitrary code execution vulnerability that requires local administrator access. See the resource center. Resources Cisco Talos, “ArcaneDoor - New espionage-focused campaign found targeting perimeter network devices” NIST, “CVE-2024-20353” NIST, “CVE-2024-20359” Related articles ArcaneDoor Vulnerabilities [CVE-2024-20353, CVE-2024-20359] CrushFTP Zero-Day [CVE-2024-4040] – April 24, 2024 Replacing and Updating Your SAML Certificate What is a Finding Rescan? Progress MOVEit Transfer Authentication Bypass [CVE-2024-5806] – June 28, 2024 Feedback 0 comments Please sign in to leave a comment.