CVE-2024-9135 On affected platforms running Arista EOS with BGP Link State configured, BGP peer flap can cause the BGP agent to leak memory. This may result in BGP routing processing being terminated and route flapping.

🗓️ 04 Mar 2025 20:12:02Reported by AristaType

BGP peer flap on Arista EOS can leak memory, terminating routing processing and causing flapping.

Reporter	Title	Published	Views	Family All 7
Arista	Security Advisory 0110	21 Jan 202500:00	–	arista
Circl	CVE-2024-9135	4 Mar 202520:32	–	circl
CNNVD	Arista EOS 安全漏洞	4 Mar 202500:00	–	cnnvd
CVE	CVE-2024-9135	4 Mar 202520:12	–	cve
EUVD	EUVD-2024-54123	3 Oct 202520:07	–	euvd
NVD	CVE-2024-9135	4 Mar 202521:15	–	nvd
Vulnrichment	CVE-2024-9135 On affected platforms running Arista EOS with BGP Link State configured, BGP peer flap can cause the BGP agent to leak memory. This may result in BGP routing processing being terminated and route flapping.	4 Mar 202520:12	–	vulnrichment

[
  {
    "defaultStatus": "unaffected",
    "product": "EOS",
    "vendor": "Arista Networks",
    "versions": [
      {
        "status": "affected",
        "version": "4.33.0"
      },
      {
        "lessThanOrEqual": "4.31.5",
        "status": "affected",
        "version": "4.31.0",
        "versionType": "custom"
      },
      {
        "lessThanOrEqual": "4.30.8.1",
        "status": "affected",
        "version": "4.30.0",
        "versionType": "custom"
      },
      {
        "lessThanOrEqual": "4.29.9.1",
        "status": "affected",
        "version": "4.29.0",
        "versionType": "custom"
      },
      {
        "status": "affected",
        "version": "4.28.0"
      },
      {
        "lessThanOrEqual": "4.27.1",
        "status": "affected",
        "version": "4.27.0",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
arista	www.arista.com/en/support/advisories-notices/security-advisory/21092-security-advisory-0110

04 Mar 2025 20:12Current

CVSS 3.15.3

EPSS0.00202

CWE-401

cve-2024-9135 arista eos bgp vulnerability memory leak routing issues