8.2
CVE-2026-2379
- EPSS 0.23%
- Veröffentlicht 05.06.2026 17:59:40
- Zuletzt bearbeitet 05.06.2026 19:03:48
- Quelle psirt@arista.com
- CVE-Watchlists
- Unerledigt
Arista EOS IPsec Tunnel Sequence Number Mismatch via Interface Flaps when Anti-Replay is Disabled
On affected platforms with hardware IPSec support running Arista EOS with certain IPsec features enabled, EOS may exhibit unexpected behavior in specific cases. Physical interface flaps and certain agent restarts can cause IPsec tunnel re-establishment with existing Security Associations, resulting in sequence number mismatches between tunnel endpoints potentially causing unstable communication.
Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).
HerstellerArista Networks
≫
Produkt
EOS
Default Statusunaffected
Version <=
4.34.3M
Version
4.34.0
Status
affected
Version <=
4.33.5M
Version
4.33.0M
Status
affected
Version <=
4.32.7M
Version
4.32.0M
Status
affected
Version <=
4.31.9M
Version
4.31.0M
Status
affected
Version
4.30.0F
Version <
4.31.0
Status
affected
Version
4.29.0F
Version <
4.30.0
Status
affected
Version
4.28.0F
Version <
4.29.0
Status
affected
Version
4.27.1F
Version <
4.28.0
Status
affected
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.23% | 0.131 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| psirt@arista.com | 8.2 | 0 | 0 |
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
|
| psirt@arista.com | 5.9 | 2.2 | 3.6 |
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
|
CWE-672 Operation on a Resource after Expiration or Release
The product uses, accesses, or otherwise operates on a resource after that resource has been expired, released, or revoked.
https://www.arista.com/en/support/advisories-notices/security-advisory/23419-security-advisory-0134