Arista

Eos

72 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 0.23%
  • Veröffentlicht 05.06.2026 17:59:40
  • Zuletzt bearbeitet 05.06.2026 19:03:48

On affected platforms with hardware IPSec support running Arista EOS with certain IPsec features enabled, EOS may exhibit unexpected behavior in specific cases. Physical interface flaps and certain agent restarts can cause IPsec tunnel re-establishme...

Warnung Medienbericht
  • EPSS 0.84%
  • Veröffentlicht 05.06.2026 16:22:47
  • Zuletzt bearbeitet 09.06.2026 20:48:49

On affected platforms running Arista EOS where a tunnel decapsulation configuration—such as VXLAN (Virtual Extensible LAN), decap-groups, or a GRE (Generic Routing Encapsulation) tunnel interface—is present, the switch will incorrectly decapsulate an...

  • EPSS 0.32%
  • Veröffentlicht 05.06.2026 15:58:15
  • Zuletzt bearbeitet 05.06.2026 19:03:48

An authenticated Redis session could be used to obtain full root access to all servers in the CVX cluster. Note that this would require an attacker to have both network access to the Redis service on a CVX server and the Redis password. Please note t...

  • EPSS 0.24%
  • Veröffentlicht 05.06.2026 15:49:27
  • Zuletzt bearbeitet 05.06.2026 19:03:48

CVX is not resilient to unexpected messages from a connected switch. This leads to agent crashes on CVX causing instability in the CVX cluster. An attacker could use this behavior to create a denial of service (DoS) scenario. Note that this would req...

  • EPSS 0.24%
  • Veröffentlicht 05.06.2026 15:44:45
  • Zuletzt bearbeitet 05.06.2026 19:03:48

In a CVX cluster, an EOS switch connected to a CVX server is not resilient to certain malformed messages received from the connected CVX server. Similarly, the CVX server is not resilient to certain malformed messages received from the connected EOS ...

  • EPSS 0.39%
  • Veröffentlicht 04.06.2026 23:04:56
  • Zuletzt bearbeitet 05.06.2026 15:02:34

On affected platforms running Arista EOS with IPsec configured, a specially crafted packet can cause the dataplane to stop processing all IPsec traffic. The control plane may detect this condition, and attempt to reset the IPsec processing pipeline. ...

  • EPSS 0.32%
  • Veröffentlicht 04.06.2026 22:39:34
  • Zuletzt bearbeitet 05.06.2026 15:02:34

On affected platforms running Arista EOS with 802.1x authentication configured on the access/trunk ports, and routing enabled on the access VLAN of the ports, a malicious supplicant may be able to bypass the requirement to perform 802.1x authenticati...

  • EPSS 0.3%
  • Veröffentlicht 04.06.2026 22:33:15
  • Zuletzt bearbeitet 05.06.2026 15:02:34

Affected platforms running Arista EOS with OpenConfig configured, a gNMI Set request can be run when it should have been rejected. This can result in unexpected configuration being applied to the switch.

  • EPSS 4.43%
  • Veröffentlicht 04.06.2026 22:27:36
  • Zuletzt bearbeitet 05.06.2026 15:02:34

Affected platforms running Arista EOS with OpenConfig configured, a gNMI Set request can be run when it should have been rejected. This can result in unexpected configuration being applied to the switch.

  • EPSS 0.28%
  • Veröffentlicht 04.06.2026 22:08:42
  • Zuletzt bearbeitet 05.06.2026 15:02:34

On affected platforms running Arista EOS with MACsec and egress ACLs configured on the same interfaces, the ACL policies may not be enforced for packets egressing on those ports. This can cause outgoing packets to incorrectly be allowed or denied.