26 matches found
CVE-2021-28497
Arista MOS on 7130 (Arista 7130 MOS) is affected by CVE-2021-28497. Under certain conditions, the bash shell may be accessible to unprivileged users. Affected software trains and versions include MOS-0.1x (all releases), MOS-0.26.6 and below in MOS-0.2x, and MOS-0.31.1 and below in MOS-0.3x. Reme...
CVE-2021-28499
In Arista's MOS Metamako Operating System software which is supported on the 7130 product line, user account passwords set in clear text could leak to users without any password. This issue affects: Arista Metamako Operating System MOS-0.18 and post releases in the MOS-0.1x train All releases in...
CVE-2021-28499
CVE-2021-28499 affects Arista MOS on 7130 devices; root cause is cleartext storage of user passwords, exposing passwords to unprivileged users. Affected MOS trains include MOS-0.18, MOS-0.1x (up to 0.2x and 0.3x MOS-0.31.1 and earlier in 0.3x). Mitigation: upgrade to remediated MOS versions MOS-0...
CVE-2021-28498
Arista MOS on 7130 devices is affected by CVE-2021-28498, where user enable passwords stored in clear text allow unprivileged access. Affected MOS versions include MOS-0.13 and later in MOS-0.1x train, MOS-0.26.6 in MOS-0.2x, and MOS-0.31.1 and earlier in MOS-0.3x. The issue is fixed by upgrading...
CVE-2021-28498
In Arista's MOS Metamako Operating System software which is supported on the 7130 product line, user enable passwords set in clear text could result in unprivileged users getting complete access to the systems. This issue affects: Arista Metamako Operating System MOS-0.13 and post releases in the...
Vulnerabilities fixed in Arista MOS on 7130 switches
Several vulnerabilities have been fixed in Arista 7130 switches that use the Metamako Operating System MOS. The vulnerabilities allow a malicious party to perform attacks execute attacks that result in the following categories of damage: Bypassing authentication Bypassing security measure Remote...