Lucene search
K

818 matches found

Cvelist
Cvelist
added 2026/06/04 9:51 p.m.31 views

CVE-2024-6858 In Arista’s EOS when in 802.1X mode, multi-auth unauthenticated hosts might be allowed access to a switch port if there exists an EAPOL capable device in the fallback VLAN.

In Arista’s EOS when in 802.1X mode, multi-auth unauthenticated hosts might be allowed access to a switch port if there exists an EAPOL capable device in the fallback VLAN...

0.00143EPSS
Exploits0References1
CVE
CVE
added 2026/06/04 9:51 p.m.29 views

CVE-2024-6858

In Arista EOS, CVE-2024-6858 affects multiple EOS releases (EOS 4.31.x, 4.30.x, 4.29.x, 4.28.x) where 802.1X is enabled and a fallback VLAN with an EAPOL-capable device can allow multi-auth unauthenticated hosts access to a switch port. Root cause: improper authentication handling when using dot1...

6.5CVSS5.8AI score0.00143EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/06/04 12:0 a.m.8 views

Arista EOS 安全漏洞

Arista EOS is a fully programmable, highly modular Linux-based network operating system developed by the American company Arista. There is a security vulnerability in Arista EOS. This vulnerability arises when configuring IPsec, where specially crafted packets may cause the data plane to stop...

8.7CVSS5.3AI score0.00386EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/04 12:0 a.m.12 views

PT-2026-46397

Name of the Vulnerable Software and Affected Versions Arista EOS affected versions not specified Description Platforms running Arista EOS with OpenConfig configured may process a gNMI Set request that should have been rejected. This flaw allows unexpected configurations to be applied to the switc...

9.6CVSS5.4AI score0.00302EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/06/04 12:0 a.m.8 views

Arista EOS 安全漏洞

Arista EOS is a fully programmable, highly modular Linux-based network operating system developed by the American company Arista. There is a security vulnerability in Arista EOS, which stems from the possibility for malicious attackers to bypass the 802.1x authentication requirements when...

8.2CVSS5.4AI score0.00317EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/06/04 12:0 a.m.11 views

Arista EOS 安全漏洞

Arista EOS is a fully programmable, highly modular Linux-based network operating system developed by the American company Arista. There is a security vulnerability in Arista EOS, which arises from the situation where configuring MACsec and outbound ACLs on the same interface may cause the ACL...

6.9CVSS5.3AI score0.00282EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/06/04 12:0 a.m.9 views

Arista EOS 安全漏洞

Arista EOS is a fully programmable, highly modular Linux-based network operating system developed by the American company Arista. There is a security vulnerability in Arista EOS, which stems from the fact that when configuring OpenConfig, a gNMI Set request that should be rejected may still be...

9.6CVSS5.3AI score0.00302EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/06/04 12:0 a.m.9 views

Arista EOS 安全漏洞

Arista EOS is a fully programmable, highly modular Linux-based network operating system developed by the American company Arista. There is a security vulnerability in Arista EOS, which stems from the fact that under 802.1X mode, if there are devices supporting EAPOL in the back-end VLAN,...

6.5CVSS5.3AI score0.00143EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/06/04 12:0 a.m.8 views

Arista EOS 安全漏洞

Arista EOS is a fully programmable, highly modular Linux-based network operating system developed by the American company Arista. There is a security vulnerability in Arista EOS, which stems from the fact that when configuring OpenConfig, a gNMI Set request that should be rejected may still be...

9.6CVSS5.3AI score0.0443EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/04 12:0 a.m.19 views

PT-2026-46396

Name of the Vulnerable Software and Affected Versions Arista EOS affected versions not specified Description On affected platforms running Arista EOS with MACsec and egress ACLs configured on the same interfaces, the ACL policies may not be enforced for packets egressing on those ports. This...

6.9CVSS5.4AI score0.00282EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/06/04 12:0 a.m.15 views

PT-2026-46395

Name of the Vulnerable Software and Affected Versions Arista EOS affected versions not specified Description Platforms running Arista EOS with OpenConfig configured may process a gNMI Set request that should have been rejected. This flaw allows unexpected configurations to be applied to the switc...

9.6CVSS5.4AI score0.0443EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/06/04 12:0 a.m.20 views

PT-2026-46392

Name of the Vulnerable Software and Affected Versions Arista EOS affected versions not specified Description When operating in 802.1X mode, multi-auth unauthenticated hosts may be granted unauthorized access to a switch port if an EAPOL Extensible Authentication Protocol over LAN capable device i...

6.5CVSS5.4AI score0.00143EPSS
Exploits0References3
OSV
OSV
added 2026/05/11 5:39 a.m.14 views

BIT-GDAL-2026-8084 OSGeo gdal HDF-EOS Grid File SWapi.c memmove out-of-bounds

A vulnerability was determined in OSGeo gdal up to 3.13.0. This vulnerability affects the function memmove of the file frmts/hdf4/hdf-eos/SWapi.c of the component HDF-EOS Grid File Handler. This manipulation causes out-of-bounds read. The attack is restricted to local execution. The exploit has...

5.5CVSS5.3AI score0.00264EPSS
Exploits1References10
EUVD
EUVD
added 2026/05/10 12:33 a.m.31 views

EUVD-2026-28948

A flaw has been found in OSGeo gdal up to 3.13.0dev-4. Affected by this vulnerability is the function SWSDfldsrch of the file frmts/hdf4/hdf-eos/SWapi.c. Executing a manipulation can lead to heap-based buffer overflow. The attack requires local access. The exploit has been published and may be...

5.3CVSS5.8AI score0.00205EPSS
Exploits1References9
EUVD
EUVD
added 2026/05/10 12:33 a.m.9 views

EUVD-2026-28949

A vulnerability has been found in OSGeo gdal up to 3.13.0dev-4. Affected by this issue is the function GDSDfldsrch of the file frmts/hdf4/hdf-eos/GDapi.c of the component Grid File Handler. The manipulation leads to heap-based buffer overflow. An attack has to be approached locally. The exploit h...

5.3CVSS5.4AI score0.00258EPSS
Exploits1References9
OSV
OSV
added 2026/05/10 12:33 a.m.8 views

GHSA-R5M4-5VWW-W9F5 OSGeo gdal has a heap-based buffer overflow

A flaw has been found in OSGeo gdal up to 3.13.0dev-4. Affected by this vulnerability is the function SWSDfldsrch of the file frmts/hdf4/hdf-eos/SWapi.c. Executing a manipulation can lead to heap-based buffer overflow. The attack requires local access. The exploit has been published and may be...

5.3CVSS5.9AI score0.00205EPSS
Exploits1References10
Github Security Blog
Github Security Blog
added 2026/05/10 12:33 a.m.18 views

OSGeo gdal has a heap-based buffer overflow

A flaw has been found in OSGeo gdal up to 3.13.0dev-4. Affected by this vulnerability is the function SWSDfldsrch of the file frmts/hdf4/hdf-eos/SWapi.c. Executing a manipulation can lead to heap-based buffer overflow. The attack requires local access. The exploit has been published and may be...

5.5CVSS5.8AI score0.00205EPSS
Exploits1References11Affected Software1
OSV
OSV
added 2026/05/09 11:16 p.m.8 views

DEBIAN-CVE-2026-8212

A flaw has been found in OSGeo gdal up to 3.13.0dev-4. Affected by this vulnerability is the function SWSDfldsrch of the file frmts/hdf4/hdf-eos/SWapi.c. Executing a manipulation can lead to heap-based buffer overflow. The attack requires local access. The exploit has been published and may be...

5.5CVSS5.8AI score0.00205EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2026/05/09 11:16 p.m.13 views

CVE-2026-8212

A flaw has been found in OSGeo gdal up to 3.13.0dev-4. Affected by this vulnerability is the function SWSDfldsrch of the file frmts/hdf4/hdf-eos/SWapi.c. Executing a manipulation can lead to heap-based buffer overflow. The attack requires local access. The exploit has been published and may be...

5.5CVSS5.7AI score0.00205EPSS
Exploits1References9
ATTACKERKB
ATTACKERKB
added 2026/05/09 10:30 p.m.11 views

CVE-2026-8212

A flaw has been found in OSGeo gdal up to 3.13.0dev-4. Affected by this vulnerability is the function SWSDfldsrch of the file frmts/hdf4/hdf-eos/SWapi.c. Executing a manipulation can lead to heap-based buffer overflow. The attack requires local access. The exploit has been published and may be...

5.3CVSS6AI score0.00205EPSS
Exploits1References8Affected Software1
Rows per page
Query Builder