Attackers are exploiting CVE-2024-20439, a static credential vulnerability in Cisco Smart Licensing Utility, allowing unauthenticated remote access. Cisco released a fix in September 2024, but exploitation attempts were only detected in March 2025. CISA urges US federal agencies to apply mitigations or discontinue use by April 21, 2025.