Lucene search

AristaCVELIST:CVE-2023-6068

HistoryMar 04, 2024 - 7:44 p.m.

CVE-2023-6068 On affected 7130 Series FPGA platforms running MOS and recent versions of the MultiAccess FPGA, application of ACL’s may result in incorrect operation of the configured ACL for a port resulting in some packets that should be denied being permitted and some

2024-03-0419:44:08

CWE-283

Arista

www.cve.org

cve-2023-6068

affected platforms

acl

incorrect operation

multiaccess fpga

packet filtering

CVSS3

3.1

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N

AI Score

4.3

Confidence

High

EPSS

Percentile

9.0%

JSON

On affected 7130 Series FPGA platforms running MOS and recent versions of the MultiAccess FPGA, application of ACL’s may result in incorrect operation of the configured ACL for a port resulting in some packets that should be denied being permitted and some

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "modules": [
      "MultiAccess FPGA Software"
    ],
    "product": "MOS",
    "vendor": "Arista Networks",
    "versions": [
      {
        "status": "affected",
        "version": "1.7.1"
      },
      {
        "status": "affected",
        "version": "1.6"
      }
    ]
  }
]

References

www.arista.com/en/support/advisories-notices/security-advisory/19023-security-advisory-0091

CVSS3

3.1

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N

AI Score

4.3

Confidence

High

EPSS

Percentile

9.0%

JSON

Related for CVELIST:CVE-2023-6068