3 matches found
CVE-2021-28504
On Arista Strata family products which have “TCAM profile” feature enabled when Port IPv4 access-list has a rule which matches on “vxlan” as protocol then that rule and subsequent rules rules declared after it in ACL do not match on IP protocol field as expected...
CVE-2021-28504
CVE-2021-28504 affects Arista Strata/EOS platforms with TCAM profile enabled where a port IPv4 ACL rule matching VXLAN protocol causes the rule and later ACL rules to fail matching the IP protocol field. This misbehavior can lead to improper packet handling and potential traffic leakage. Arista’s...
Security Advisory 0074
Security Advisory 0074 . CSAF PDF Date: April 1st, 2022 Revision | Date | Changes ---|---|--- 1.0 | April 1st, 2022 | Initial Release The CVE-ID tracking this issue: CVE-2021-28504 CVSSv3.1 Base Score: 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N Common Weakness Enumeration: CWE-284 Improper...