Lucene search
K

4 matches found

NVD
NVD
added 2025/05/08 7:16 p.m.21 views

CVE-2025-0505

On Arista CloudVision systems virtual or physical on-premise deployments, Zero Touch Provisioning can be used to gain admin privileges on the CloudVision system, with more permissions than necessary, which can be used to query or manipulate system state for devices under management. Note that...

10CVSS0.00576EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/05/08 6:37 p.m.20 views

CVE-2025-0505 On Arista CloudVision systems (virtual or physical on-premise deployments), Zero Touch Provisioning can be used to gain admin privileges on the CloudVision system, with more permissions than necessary, which can be used to query or manipulate system state

On Arista CloudVision systems virtual or physical on-premise deployments, Zero Touch Provisioning can be used to gain admin privileges on the CloudVision system, with more permissions than necessary, which can be used to query or manipulate system state for devices under management. Note that...

10CVSS0.00576EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/05/08 6:37 p.m.14 views

CVE-2025-0505 On Arista CloudVision systems (virtual or physical on-premise deployments), Zero Touch Provisioning can be used to gain admin privileges on the CloudVision system, with more permissions than necessary, which can be used to query or manipulate system state

On Arista CloudVision systems virtual or physical on-premise deployments, Zero Touch Provisioning can be used to gain admin privileges on the CloudVision system, with more permissions than necessary, which can be used to query or manipulate system state for devices under management. Note that...

10CVSS9.6AI score0.00576EPSS
Exploits0References1
CVE
CVE
added 2025/05/08 6:37 p.m.92 views

CVE-2025-0505

Arista CloudVision ZTP privilege escalation (CVE-2025-0505) affects on-prem CloudVision Portal/CUE; ZTP can grant admin privileges beyond what’s necessary, enabling querying/manipulation of managed devices. CloudVision as-a-Service is not affected. On-premise CloudVision Portal versions listed in...

10CVSS9.6AI score0.00576EPSS
Exploits0References1
Rows per page
Query Builder