3 matches found
CVE-2025-54549 Cryptographic validation of upgrade images could be circumventing by dropping a specifically crafted file into the upgrade ISO
Cryptographic validation of upgrade images could be circumventing by dropping a specifically crafted file into the upgrade ISO...
CVE-2025-54549
CVE-2025-54549 affects Arista DANZ Monitoring Fabric, Converged Cloud Fabric, CloudVision Appliance, and Multi-Cloud Director; issue is bypass of cryptographic validation of upgrade images via a crafted upgrade ISO. Arista Fixed versions: DMF 8.7.1+ (and 8.6.2+/8.5.3+/8.4.6+), CCF 6.2.5+, CVA 7.1...
CVE-2025-54549 Cryptographic validation of upgrade images could be circumventing by dropping a specifically crafted file into the upgrade ISO
Cryptographic validation of upgrade images could be circumventing by dropping a specifically crafted file into the upgrade ISO...