2 matches found
CVE-2021-28511
This advisory documents the impact of an internally found vulnerability in Arista EOS for security ACL bypass. The impact of this vulnerability is that the security ACL drop rule might be bypassed if a NAT ACL rule filter with permit action matches the packet flow. This could allow a host with an...
CVE-2021-28511
The CVE-2021-28511 issue affects Arista EOS. A NAT ACL with a permit action can match traffic in a way that bypasses the Security ACL drop rule, possibly allowing a host IP that falls within both NAT-allowed and Security-ACL-denied ranges to be forwarded instead of dropped. This is an ACL bypass ...