Lucene search
K

7 matches found

Tenable Nessus
Tenable Nessus
added 2026/06/05 12:0 a.m.9 views

Arista Networks EOS Security Update (SA0140)

The version of Arista Networks EOS running on the remote device is affected by a vulnerability as referenced in security advisory SA0140. - A user with local eos-admin privileges on affected Arista EOS Extensible Operating System platforms where secure boot is enabled can bypass Secure Boot...

5.6AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/10/25 12:0 a.m.13 views

Arista Networks EOS Improper Privilege Management (SA0082)

On affected modular platforms running Arista EOS equipped with both redundant supervisor modules and having the redundancy protocol configured with RPR or SSO, an existing unprivileged user can login to the standby supervisor as a root user, leading to a privilege escalation. Valid user credentia...

9.3CVSS7.3AI score0.00238EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2020/03/11 12:0 a.m.65 views

Arista Networks EOS Multiple Vulnerabilities (SA0043)

The version of Arista Networks EOS running on the remote device is affected by the following vulnerabilities: - HTTP/2 implementations are vulnerable to ping floods, potentially leading to a denial of service DoS. An unauthenticated, remote attacker can exploit this, by sending continual pings to...

7.8CVSS7.9AI score0.87806EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2020/02/28 12:0 a.m.33 views

Arista Networks EOS DoS (SA0039)

The version of Arista Networks EOS running on the remote device is affected by a denial of service DoS vulnerability in the client certificate authentication process, due to the crypto/x509 package in Go not limiting the amount of work performed for each chain verification. A remote,...

7.8CVSS6.8AI score0.06325EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2020/02/19 12:0 a.m.77 views

Arista Networks EOS DNS 2 byte heap based overflow RCE (SA0030)

The version of Arista Networks EOS running on the remote device is affected by a heap-based buffer overflow in dnsmasq. This vulnerability allows a remote, unauthenticated attacker to run arbitrary code, create a denial of service DoS or an out of memory situation. Note that Nessus has not tested...

9.8CVSS8.3AI score0.84925EPSS
Exploits6References2
Tenable Nessus
Tenable Nessus
added 2018/02/28 12:0 a.m.202 views

Arista Networks EOS 4.17 Multiple Vulnerabilities (SA0024) (SWEET32)

The version of Arista Networks EOS running on the remote device is affected by multiple vulnerabilities in the included OpenSSL library : - An information disclosure vulnerability exists in the dsasignsetup function in dsaossl.c due to a failure to properly ensure the use of constant-time...

7.8CVSS7.3AI score0.95707EPSS
Exploits8References6
Symantec
Symantec
added 2014/09/24 12:0 a.m.255 views

GNU Bash CVE-2014-6271 Remote Code Execution Vulnerability

Description GNU Bash is prone to remote code execution vulnerability. An attacker can exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts will result in a denial-of-service condition. Technologies Affected Advantech EKI-1320 1.98...

10CVSS1.5AI score0.99999EPSS
Exploits140References36Affected Software319
Rows per page
Query Builder