Lucene search

AristaCVE-2023-24512

HistoryApr 25, 2023 - 9:15 p.m.

CVE-2023-24512

2023-04-2521:15:10

CWE-284

CWE-863

Arista

web.nvd.nist.gov

cve-2023-24512

arista eos

authorized attacker

gnmi requests

switch configurations

nvd

security vulnerability

information security

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

6.4

Confidence

High

EPSS

0.001

Percentile

23.5%

JSON

On affected platforms running Arista EOS, an authorized attacker with permissions to perform gNMI requests could craft a request allowing it to update arbitrary configurations in the switch. This situation occurs only when the Streaming Telemetry Agent (referred to as the TerminAttr agent) is enabled and gNMI access is configured on the agent. Note: This gNMI over the Streaming Telemetry Agent scenario is mostly commonly used when streaming to a 3rd party system and is not used by default when streaming to CloudVision

Affected configurations

Nvd

Node

arista32qdMatch-

arista48ehsMatch-

arista48lbasMatch-

arista48lbsMatch-

arista48s6qdMatch-

arista7010t-48Match-

arista7020sr-24c2Match-

arista7020sr-32c2Match-

arista7020tr-48Match-

arista7020tra-48Match-

arista7050cx3-32sMatch-

arista7050cx3m-32sMatch-

arista7050qx-32sMatch-

arista7050qx2-32sMatch-

arista7050sx-128Match-

arista7050sx-64Match-

arista7050sx-72qMatch-

arista7050sx2-128Match-

arista7050sx2-72qMatch-

arista7050sx3-48c8Match-

arista7050sx3-48ycMatch-

arista7050sx3-48yc12Match-

arista7050sx3-48yc8Match-

arista7050sx3-96yc8Match-

arista7050tx-48Match-

arista7050tx-64Match-

arista7050tx-72qMatch-

arista7050tx2-128Match-

arista7050tx3-48c8Match-

arista7060cx-32sMatch-

arista7060cx2-32sMatch-

arista7060dx4-32Match-

arista7060px4-32Match-

arista7060sx2-48yc6Match-

arista7130-16g3sMatch-

arista7130-48g3sMatch-

arista7130-96sMatch-

arista7150s-24Match-

arista7150s-52Match-

arista7150s-64Match-

arista7150sc-24Match-

arista7150sc-64Match-

arista7160-32cqMatch-

arista7160-48tc6Match-

arista7160-48yc6Match-

arista7170-32cMatch-

arista7170-32cdMatch-

arista7170-64cMatch-

arista7170b-64cMatch-

arista720df-48yMatch-

arista720dp-24sMatch-

arista720dp-48sMatch-

arista720dt-24sMatch-

arista720dt-48sMatch-

arista720xp-24y6Match-

arista720xp-24zy4Match-

arista720xp-48y6Match-

arista720xp-48zc2Match-

arista720xp-96zc2Match-

arista7250qx-64Match-

arista7260cxMatch-

arista7260cx3Match-

arista7260qxMatch-

arista7260sx2Match-

arista7280cr2k-60Match-

arista7280cr3-32d4Match-

arista7280cr3-32p4Match-

arista7280cr3-96Match-

arista7280cr3k-32d4Match-

arista7280cr3k-32p4Match-

arista7280cr3k-96Match-

arista7280dr3-24Match-

arista7280dr3k-24Match-

arista7280eMatch-

arista7280pr3-24Match-

arista7280pr3k-24Match-

arista7280sr3-48yc8Match-

arista7280sr3k-48yc8Match-

arista7300x-32qMatch-

arista7300x-64sMatch-

arista7300x-64tMatch-

arista7300x3-32cMatch-

arista7300x3-48yc4Match-

arista7320x-32cMatch-

arista7358x4Match-

arista7368x4Match-

arista7388x5Match-

arista7500r3-24dMatch-

arista7500r3-24pMatch-

arista7500r3-36cqMatch-

arista7500r3k-36cqMatch-

arista7804r3Match-

arista7808r3Match-

arista7812r3Match-

arista7816r3Match-

arista96lbsMatch-

aristadcs-7010tx-48Match-

aristadcs-7500-12cq-lcMatch-

aristadcs-7500e-12cm-lcMatch-

aristadcs-7500e-36q-lcMatch-

aristadcs-7500e-48s-lcMatch-

aristadcs-7500e-6c2-lcMatch-

aristadcs-7500e-72s-lcMatch-

aristadcs-7500r-36cq-lcMatch-

aristadcs-7500r-36q-lcMatch-

aristadcs-7500r-48s2cq-lcMatch-

AND

aristaeosRange4.26.0–4.26.10m

aristaeosRange4.27.0–4.27.9m

aristaeosRange4.28.0–4.28.6m

aristaeosRange4.29.0–4.29.2f

Node

aristaceos-lab

aristacloudeosMatch-

aristaveos-labMatch-

VendorProductVersionCPE
arista32qd-cpe:2.3:h:arista:32qd:-:*:*:*:*:*:*:*
arista48ehs-cpe:2.3:h:arista:48ehs:-:*:*:*:*:*:*:*
arista48lbas-cpe:2.3:h:arista:48lbas:-:*:*:*:*:*:*:*
arista48lbs-cpe:2.3:h:arista:48lbs:-:*:*:*:*:*:*:*
arista48s6qd-cpe:2.3:h:arista:48s6qd:-:*:*:*:*:*:*:*
arista7010t-48-cpe:2.3:h:arista:7010t-48:-:*:*:*:*:*:*:*
arista7020sr-24c2-cpe:2.3:h:arista:7020sr-24c2:-:*:*:*:*:*:*:*
arista7020sr-32c2-cpe:2.3:h:arista:7020sr-32c2:-:*:*:*:*:*:*:*
arista7020tr-48-cpe:2.3:h:arista:7020tr-48:-:*:*:*:*:*:*:*
arista7020tra-48-cpe:2.3:h:arista:7020tra-48:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
arista	32qd	-	cpe:2.3:h:arista:32qd:-:::::::*
arista	48ehs	-	cpe:2.3:h:arista:48ehs:-:::::::*
arista	48lbas	-	cpe:2.3:h:arista:48lbas:-:::::::*
arista	48lbs	-	cpe:2.3:h:arista:48lbs:-:::::::*
arista	48s6qd	-	cpe:2.3:h:arista:48s6qd:-:::::::*
arista	7010t-48	-	cpe:2.3:h:arista:7010t-48:-:::::::*
arista	7020sr-24c2	-	cpe:2.3:h:arista:7020sr-24c2:-:::::::*
arista	7020sr-32c2	-	cpe:2.3:h:arista:7020sr-32c2:-:::::::*
arista	7020tr-48	-	cpe:2.3:h:arista:7020tr-48:-:::::::*
arista	7020tra-48	-	cpe:2.3:h:arista:7020tra-48:-:::::::*

Rows per page:

1-10 of 1101

CNA Affected

[
  {
    "vendor": "Arista Networks",
    "product": "Terminattr",
    "versions": [
      {
        "version": "1.23.0",
        "status": "affected"
      },
      {
        "version": "unspecified",
        "lessThanOrEqual": "1.19.5",
        "status": "affected",
        "versionType": "custom"
      },
      {
        "version": "1.24.0",
        "status": "affected",
        "lessThanOrEqual": "1.24.3",
        "versionType": "custom"
      },
      {
        "version": "1.22.0",
        "status": "affected",
        "lessThanOrEqual": "1.22.1",
        "versionType": "custom"
      }
    ]
  }
]

References

www.arista.com/en/support/advisories-notices/security-advisory/17250-security-advisory-0086

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

6.4

Confidence

High

EPSS

0.001

Percentile

23.5%

JSON

Related for CVE-2023-24512