Lucene search

AristaVULNRICHMENT:CVE-2023-6068

HistoryMar 04, 2024 - 7:44 p.m.

CVE-2023-6068 On affected 7130 Series FPGA platforms running MOS and recent versions of the MultiAccess FPGA, application of ACL’s may result in incorrect operation of the configured ACL for a port resulting in some packets that should be denied being permitted and some

2024-03-0419:44:08

CWE-283

Arista

github.com

cve-2023-6068

7130 series

mos

multiaccess fpga

acl

incorrect operation

3.1 Low

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N

6.9 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

9.1%

JSON

On affected 7130 Series FPGA platforms running MOS and recent versions of the MultiAccess FPGA, application of ACL’s may result in incorrect operation of the configured ACL for a port resulting in some packets that should be denied being permitted and some

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "modules": [
      "MultiAccess FPGA Software"
    ],
    "product": "MOS",
    "vendor": "Arista Networks",
    "versions": [
      {
        "status": "affected",
        "version": "1.7.1"
      },
      {
        "status": "affected",
        "version": "1.6"
      }
    ]
  }
]

References

www.arista.com/en/support/advisories-notices/security-advisory/19023-security-advisory-0091

3.1 Low

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N

6.9 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

9.1%

JSON

Related for VULNRICHMENT:CVE-2023-6068