CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
AI Score
Confidence
High
EPSS
Percentile
37.4%
For certain systems running EOS, a Precision Time Protocol (PTP) packet of a management/signaling message with an invalid Type-Length-Value (TLV) causes the PTP agent to restart. Repeated restarts of the service will make the service unavailable.
Vendor | Product | Version | CPE |
---|---|---|---|
arista | eos | * | cpe:2.3:o:arista:eos:*:*:*:*:*:*:*:* |
arista | 7020r | - | cpe:2.3:h:arista:7020r:-:*:*:*:*:*:*:* |
arista | 7050cx3-32s | - | cpe:2.3:h:arista:7050cx3-32s:-:*:*:*:*:*:*:* |
arista | 7050cx3m-32s | - | cpe:2.3:h:arista:7050cx3m-32s:-:*:*:*:*:*:*:* |
arista | 7050qx-32s | - | cpe:2.3:h:arista:7050qx-32s:-:*:*:*:*:*:*:* |
arista | 7050qx2-32s | - | cpe:2.3:h:arista:7050qx2-32s:-:*:*:*:*:*:*:* |
arista | 7050sx-128 | - | cpe:2.3:h:arista:7050sx-128:-:*:*:*:*:*:*:* |
arista | 7050sx-64 | - | cpe:2.3:h:arista:7050sx-64:-:*:*:*:*:*:*:* |
arista | 7050sx-72q | - | cpe:2.3:h:arista:7050sx-72q:-:*:*:*:*:*:*:* |
arista | 7050sx2-128 | - | cpe:2.3:h:arista:7050sx2-128:-:*:*:*:*:*:*:* |
[
{
"vendor": "Arista Networks",
"product": "EOS",
"versions": [
{
"version": "4.22",
"status": "affected"
},
{
"version": "4.27.1",
"status": "affected",
"lessThanOrEqual": "4.27.0",
"versionType": "custom"
},
{
"version": "4.26.4",
"status": "affected",
"lessThanOrEqual": "4.26.0",
"versionType": "custom"
},
{
"version": "4.25.6",
"status": "affected",
"lessThanOrEqual": "4.25.0",
"versionType": "custom"
},
{
"version": "4.24.8",
"status": "affected",
"lessThanOrEqual": "4.24.0",
"versionType": "custom"
},
{
"version": "4.23.10",
"status": "affected",
"lessThanOrEqual": "4.23.0",
"versionType": "custom"
}
]
}
]