Arista NG Firewall custom_handler allows remote code execution without authentication via directory traversal.
Reporter | Title | Published | Views | Family All 3 |
---|---|---|---|---|
![]() | CVE-2024-12830 Arista NG Firewall custom_handler Directory Traversal Remote Code Execution Vulnerability | 20 Dec 202400:05 | – | cvelist |
![]() | CVE-2024-12830 | 20 Dec 202401:15 | – | nvd |
![]() | CVE-2024-12830 Arista NG Firewall custom_handler Directory Traversal Remote Code Execution Vulnerability | 20 Dec 202400:05 | – | vulnrichment |
[
{
"vendor": "Arista",
"product": "NG Firewall",
"versions": [
{
"version": "17.1.1",
"status": "affected"
}
],
"defaultStatus": "unknown"
}
]
Source | Link |
---|---|
zerodayinitiative | www.zerodayinitiative.com/advisories/ZDI-24-1718/ |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo