4 matches found
CVE-2023-24546
On affected versions of the CloudVision Portal improper access controls on the connection from devices to CloudVision could enable a malicious actor with network access to CloudVision to get broader access to telemetry and configuration data within the system than intended. This advisory impacts...
CVE-2023-24546
CVE-2023-24546 affects on-prem Arista CloudVision Portal. A bug in the authorization layer allowed a malicious actor with network access to CloudVision to gain broader access to telemetry and configuration data. The attack surface is limited to CloudVision Portal deployments (not CloudVision as-a...
CVE-2023-24546
On affected versions of the CloudVision Portal improper access controls on the connection from devices to CloudVision could enable a malicious actor with network access to CloudVision to get broader access to telemetry and configuration data within the system than intended. This advisory impacts...
Security Advisory 0083
Security Advisory 0083 . CSAF PDF Date: March 7, 2023 Revision | Date | Changes ---|---|--- 1.0 | March 7, 2023 | Initial release The CVE-ID tracking this issue: CVE-2023-24546 --- CVSSv3.1 Base Score: 10.0 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:L Note: This issue has been filed on MITRE as...