EUVD-2021-15187

Malware in sbrugna...

Design/Logic Flaw

This advisory documents the impact of an internally found vulnerability in Arista EOS for security ACL bypass. The impact of this vulnerability is that the security ACL drop rule might be bypassed if a NAT ACL rule filter with permit action matches the packet flow. This could allow a host with an...

CVE-2021-28511

The CVE-2021-28511 issue affects Arista EOS. A NAT ACL with a permit action can match traffic in a way that bypasses the Security ACL drop rule, possibly allowing a host IP that falls within both NAT-allowed and Security-ACL-denied ranges to be forwarded instead of dropped. This is an ACL bypass ...

Security Advisory 0078

Security Advisory 0078 . CSAF PDF Date: July 19th, 2022 Revision | Date | Changes ---|---|--- 1.0 | July 19th 2022 | Initial release The CVE-ID tracking this issue: CVE-2021-28511 CVSSv3.1 Base Score: 5.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N Common Weakness Enumeration CWE: CWE-284 Improp...

PT-2022-9903 · Arista · Arista Eos

Name of the Vulnerable Software and Affected Versions: Arista EOS affected versions not specified Description: The issue affects the security ACL bypass in Arista EOS. It occurs when a NAT ACL rule filter with permit action matches the packet flow, potentially bypassing the security ACL drop rule...