141 matches found
Security Advisory 0051
Security Advisory 0051 PDF Date: September 9th, 2020 Version: 1.0 Revision | Date | Changes ---|---|--- 1.0 | September 9th, 2020 | Initial Release The CVE-ID tracking this issue is: CVE-2020-24333 CVSSv3.1 Base Score: 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Description This advisory...
Security Advisory 0049
Security Advisory 0049 PDF Date: June 3, 2020 Version: 1.0 Revision | Date | Changes ---|---|--- 1.0 | June 3, 2020 | Initial Release The CVE-ID tracking this issue: CVE-2020-11622 CVSSv3.1 Base Score: 7.5 AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Description: This security advisory documents the...
Security Advisory 0002
Security Advisory 0002 PDF Date: 9/12/2012 Affected Software Version: EOS-4.8.0 through EOS-4.8.7, EOS-4.9.0 through EOS-4.9.5, EOS-4.10, EOS-4.10.1 Note: You must have IPv6 addresses configured on your system for this to affect you. Bug 39915: Null pointer dereference in nfconntrackipv6 Impact: ...
Security Advisory 0124
Security Advisory 0124 PDF Date: October 22, 2025 Revision | Date | Changes ---|---|--- 1.0 | October 22, 2025 | Initial release The following issues were discovered in Arista DANZ Monitoring Fabric DMF. These issues affect DMF, Converged Cloud Fabric CCF, CloudVision Appliance CVA, and Multi-Clo...
Security Advisory 0118
Security Advisory 0118 . CSAF PDF Date: May 20, 2025 Revision | Date | Changes ---|---|--- 1.0 | May 20, 2025 | Initial release The CVE-ID tracking this issue: CVE-2024-11185 CVSSv3.1 Base Score: 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N Common Weakness Enumeration: CWE-1189: Improper...
Security Advisory 0109
Security Advisory 0109 . CSAF PDF Date: February 6, 2025 Revision | Date | Changes ---|---|--- 1.0 | January 14, 2025 | Initial release 1.1 | February 6, 2025 | Updated EOS-Based Product Versions The CVE-ID tracking this issue: CVE-2024-8000 CVSSv3.1 Base Score: 5.3...
Security Advisory 0068
Security Advisory 0068 . CSAF PDF Date: August 20th, 2021 Version: 1.0 Revision | Date | Changes ---|---|--- 1.0 | August 20th, 2021 | Initial Release The CVE-ID tracking this issue: CVE-2021-28494 CVSSv3.1 Base Score: 9.6 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:H Description This advisory...
Security Advisory 0122
Security Advisory 0122 . CSAF PDF Date: July 22, 2025 Revision | Date | Changes ---|---|--- 1.0 | July 22, 2025 | Initial release 1.1 | September 30, 2025 | Added CSAF File The CVE-ID tracking this issue: CVE-2025-3456 CVSSv3.1 Base Score: 3.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N Common...
Security Advisory 0119
Security Advisory 0119 . CSAF PDF Date: May 27, 2025 Revision | Date | Changes ---|---|--- 1.0 | May 27, 2025 | Initial release 1.1 | June 4, 2025 | Updated Resolutions Section and Affected EOS Version The CVE-ID tracking this issue: CVE-2025-2796 CVSSv3.1 Base Score: 5.3...
Security Advisory 0112
Security Advisory 0112 . CSAF PDF Date: March 11, 2025 Revision | Date | Changes ---|---|--- 1.0 | March 11, 2025 | Initial release The CVE-ID tracking this issue: CVE-2024-9448 CVSSv3.1 Base Score: 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N Common Weakness Enumeration: CWE-284 Improper...
Security Advisory 0137
Security Advisory 0137 PDF Date: May 5, 2026 Revision | Date | Changes ---|---|--- 1.0 | May 5, 2026 | Initial release 1.1 | May 7, 2026 | Clarified 7280R3, 7500R3 and 7800R3 exposure is limited 1.2 | May 13, 2026 | Updated Mitigation section with a note of caution 1.3 | May 20, 2026 | Updated...
Security Advisory 0133
Security Advisory 0133 PDF Date: February 3, 2026 Revision | Date | Changes ---|---|--- 1.0 | February 3, 2026 | Initial release Description Several vulnerabilities exist for the Arista Edge Threat Management - Arista NG Firewall NGFW. On affected platforms, an administrative account logged into...
Security Advisory 0115
Security Advisory 0115 . CSAF PDF Date: April 15, 2025 Revision | Date | Changes ---|---|--- 1.0 | April 15, 2025 | Initial release The CVE-ID tracking this issue: CVE-2025-0505 CVSSv3.1 Base Score: 10.0 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:N Common Weakness Enumeration:CWE- CWE-269: Improp...
Security Advisory 0116
Security Advisory 0116 PDF Date: April 15, 2025 Revision | Date | Changes ---|---|--- 1.0 | April 15, 2025 | Initial release The CVE-ID tracking this issue: CVE-2024-8100 CVSSv3.1 Base Score: 8.7 CVSS:3.1AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:N Common Weakness Enumeration: CWE-269: Improper Privilege...
Security Advisory 0113
Security Advisory 0113 . CSAF PDF Date: April 8, 2025 Revision | Date | Changes ---|---|--- 1.0 | April 8, 2025 | Initial release The CVE-ID tracking this issue: CVE-2024-12378 CVSSv3.1 Base Score: 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N Common Weakness Enumeration: CWE-319: Cleartext...
Security Advisory 0110
Security Advisory 0110 . CSAF PDF Date: January 24, 2025 Revision | Date | Changes ---|---|--- 1.0 | January 21, 2025 | Initial release 1.1 | January 24, 2025 | Updated Affected Software Versions list The CVE-ID tracking this issue: CVE-2024-9135 CVSSv3.1 Base Score: 5.3...
Security Advisory 0025
Security Advisory 0025 PDF Date: October 17th, 2016 Version: 1.1 Revision | Date | Changes ---|---|--- 1.0 | October 17th, 2016 | Initial Release 1.1 | October 18th, 2016 | Affected platforms section is expanded Affected Platforms:DCS-7050 series only - 7050S, 7050T, 7050Q platforms 7050X series ...
Security Advisory 0135
Security Advisory 0135 PDF Date: April 7, 2026 Revision | Date | Changes ---|---|--- 1.0 | April 7th, 2026 | Initial release 1.1 | April 28th, 2026 | Correction to fixed releases fixed in 4.32.10, not 4.32.9 The CVE-ID tracking this issue: CVE-2025-31133 CVSSv3.1 Base Score: 7.8/10...
Security Advisory 0134
Security Advisory 0134 PDF Date: February 17, 2026 Revision | Date | Changes ---|---|--- 1.0 | February 17, 2026 | Initial release The CVE-ID tracking this issue: CVE-2026-2379 CVSSv3.1 Base Score: 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N Common Weakness Enumeration: CWE-672: Operation on...
Security Advisory 0127
Security Advisory 0127 . CSAF PDF Date: November 18, 2025 Revision | Date | Changes ---|---|--- 1.0 | November 18, 2025 | Initial release The CVE-ID tracking this issue: CVE-2025-8873 CVSSv3.1 Base Score: 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSSv4.0 Base Score 8.7...
Security Advisory 0123
Security Advisory 0123 PDF Date: October 21, 2025 Revision | Date | Changes ---|---|--- 1.0 | October 21, 2025 | Initial release Description Several vulnerabilities exist for the Arista Edge Threat Management - Arista NG Firewall NGFW: 1 Description : Captive Portal can expose sensitive informati...
Security Advisory 0114
Security Advisory 0114 . CSAF PDF Date: April 15, 2025 Revision | Date | Changes ---|---|--- 1.0 | April 15, 2025 | Initial release The CVE-ID tracking this issue: CVE-2024-11186 CVSSv3.1 Base Score: 9.9 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H Common Weakness Enumeration: CWE-284 Improper...
Security Advisory 0139
Security Advisory 0139 PDF Date: May 19, 2026 Revision | Date | Changes ---|---|--- 1.0 | May 19, 2026 | Initial release The CVE-ID tracking this issue: CVE-2025-49844 CVSSv3.1 Base Score: 9.9 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H CVSSv4.0 Base Score: 9.4...
Security Advisory 0125
Security Advisory 0125 . CSAF PDF Date: November 11, 2025 Revision | Date | Changes ---|---|--- 1.0 | November 11, 2025 | Initial release The CVE-ID tracking this issue: CVE-2025-8870 CVSS:3.1 Base Score 4.9 CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:H CVSS:4.0 Base Score 5.6...
Security Advisory 0132
Security Advisory 0132 . CSAF PDF Date: December 30, 2025 Revision | Date | Changes ---|---|--- 1.0 | December 30, 2025 | Initial release 1.1 | February 3, 2026 | Updated Required Configuration for Exploitation The CVE-ID tracking this issue: CVE-2025-7048 CVSS:3.1 Base Score 4.3...
Security Advisory 0128
Security Advisory 0128 PDF Date: December 16, 2025 Revision | Date | Changes ---|---|--- 1.0 | December 16, 2025 | Initial release The CVE-ID tracking this issue: CVE-2025-8872 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 6.5 / 10 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N 7....
Security Advisory 0032
Security Advisory 0032 PDF Date: March 1st, 2018 Version: 1.0 Revision| Date| Changes ---|---|--- 1.0 | March 1st, 2018 | Initial Release Affected Platforms: All EOS platforms Affected Software Version: This issue was introduced in EOS-4.19.0F release. The CVE-ID tracking this issue is...
Security Advisory 0029
Security Advisory 0029 PDF Date: May 15th, 2017 Version: 1.0 Revision| Date| Changes ---|---|--- 1.0 | May 15th, 2017 | Initial release Affected Platforms: All EOS platforms Affected Software Version: All EOS releases prior to 4.18.1F. The list of affected releases is documented in Table-2. The...
Security Advisory 0035
Security Advisory 0035 . CSAF PDF Date: July 3, 2018 Version: 1.0 Revision | Date | Changes ---|---|--- 1.0 | July 3, 2018 | Initial Release Arista CloudVision Portal Incorrect Permissions Vulnerability - CVE-2018-12357 CVSS v3: 6.5 AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N This advisory is to document...
Security Advisory 0126
Security Advisory 0126 . CSAF PDF Date: November 18, 2025 Revision | Date | Changes ---|---|--- 1.0 | November 18, 2025 | Initial release The following issues were discovered during regular penetration testing of Arista’s EOS. Issues detailed cover CloudVision Exchange CVX based features includin...
Security Advisory 0130
Security Advisory 0130 PDF Date: December 23, 2025 Revision | Date | Changes ---|---|--- 1.0 | October 16, 2019 | Initial release 1.1 | December 23, 2025 | Updated to Arista Format NOTICE: VeloCloud is now an Arista product. Arista Networks has reposted this advisory that was originally posted by...
Security Advisory 0015
Security Advisory 0015 PDF Date: November 18th, 2015 Revision | Date | Changes ---|---|--- 1.0 | November 18th, 2015 | Public release 1.1 | November 18th, 2015 | Updated to include CVE number and bug ID Arista EOS Remote Privilege Escalation Vulnerability - CVE-2015-8236 This advisory is to...
Security Advisory 0033
Security Advisory 0033 PDF Date: April 5th, 2018 Version: 1.0 Revision| Date| Changes ---|---|--- 1.0 | April 5th, 2018 | Initial Release Affected Platforms: All EOS platforms Affected Software Version: EOS-4.20.1F release. The CVE-ID tracking this issue is CVE-2018-5254 CVSS v3: 5.0...
Security Advisory 0131
Security Advisory 0131 PDF Date: December 23, 2025 Revision | Date | Changes ---|---|--- 1.0 | July 5, 2020 | Initial release 1.1 | December 23, 2025 | Updated to Arista Format NOTICE: VeloCloud is now an Arista product. Arista Networks has reposted this advisory that was originally posted by...
Security Advisory 0141
Security Advisory 0141 PDF Date: June 16, 2026 Revision | Date | Changes ---|---|--- 1.0 | June 16, 2026 | Initial release CVSSv3.1 Base Score: 8.2 CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N CVSSv4.0 Base Score: 5.3 CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:N/SC:H/SI:H/SA:N Common Weakness...
Security Advisory 0027
Security Advisory 0027 PDF Date: December 1st, 2016 Version: 1.1 Revision| Date| Changes ---|---|--- 1.0 | December 1st, 2016 | Initial Release 1.1 | December 6th, 2016 | Impact section of this advisory is updated Affected Platforms: CloudVision Portal CVP only. Affected Software Version: All...
Security Advisory 0003
Security Advisory 0003 PDF Date: 2/14/2014 Affected Software Version: EOS-4.13.0F through EOS-4.13.1F. Note: Only publicly accessible systems are vulnerable to this attack. Bug 77553: ntpd monlist vulnerability Impact: NTP provides a monitoring service that allows administrators to query an ntpd...
Security Advisory 0129
Security Advisory 0129 PDF Date: December 23, 2025 Revision | Date | Changes ---|---|--- 1.0 | May 13, 2018 | Initial release 1.1 | December 23, 2025 | Updated to Arista Format NOTICE: VeloCloud is now an Arista product. Arista Networks has reposted this advisory that was originally posted by...
Security Advisory 0140
Security Advisory 0140 PDF Date: June 3, 2026 Revision | Date | Changes ---|---|--- 1.0 | June 3, 2026 | Initial release The CVE-ID tracking this issue: CVE-2026-10040 CVSSv3.1 Base Score: 6.0 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H CVSSv4.0 Base Score: 6.8...
Security Advisory 0143
Security Advisory 0143 PDF Date: June 23, 2026 Revision | Date | Changes ---|---|--- 1.0 | Jun 23, 2026 | Initial release Description All of the CVEs covered in this advisory apply to affected platforms running Arista EOS with the Streaming Telemetry Agent aka TerminAttr enabled. This issue...
Security Advisory 0142
Security Advisory 0142 PDF Date: June 23, 2026 Revision | Date | Changes ---|---|--- 1.0 | June 23, 2026 | Initial release 1.1 | July 8, 2026 | Updated Resolution and Mitigation sections The CVE-ID tracking this issue: CVE-2026-12546 CVSSv3.1 Base Score: 6.0...