threat
engine
.sh
Back
·
··:··
Home
/
Product
/
arista eos
Product
arista eos
50 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2024-6387
>= 4.32.0 and <= 4.32.1f
A security regression (CVE-2006-5051) was discovered in OpenSSH's server (sshd). There is a race condition which can lead sshd to
8.1
HIGH
CVE-2023-3646
>= 4.28.2f and <= 4.28.5.1m
On affected platforms running Arista EOS with mirroring to multiple destinations configured, an internal system error may trigger
5.9
MEDIUM
CVE-2023-24548
>= 4.22.1f and <= 4.22.13m
On affected platforms running Arista EOS with VXLAN configured, malformed or truncated packets received over a VXLAN tunnel and fo
5.3
MEDIUM
CVE-2023-24510
<= 4.25.10m
On the affected platforms running EOS, a malformed DHCP packet might cause the DHCP relay agent to restart.
7.5
HIGH
CVE-2023-24512
>= 4.26.0 and < 4.26.10m
On affected platforms running Arista EOS, an authorized attacker with permissions to perform gNMI requests could craft a request a
8.8
HIGH
CVE-2023-24509
>= 4.23 and <= 4.23.13m
On affected modular platforms running Arista EOS equipped with both redundant supervisor modules and having the redundancy protoco
9.3
CRITICAL
CVE-2023-24511
>= 4.26.0 and < 4.26.10m
On affected platforms running Arista EOS with SNMP configured, a specially crafted packet can cause a memory leak in the snmpd pro
5.3
MEDIUM
CVE-2023-0452
all versions
Econolite EOS versions prior to 3.2.23 use a weak hash algorithm for encrypting privileged user credentials. A configuration file
9.8
CRITICAL
CVE-2023-0451
all versions
Econolite EOS versions prior to 3.2.23 lack a password requirement for gaining “READONLY” access to log files and certain data
7.5
HIGH
CVE-2021-28510
< 4.23.10
For certain systems running EOS, a Precision Time Protocol (PTP) packet of a management/signaling message with an invalid Type-Len
5.3
MEDIUM
CVE-2021-28511
<= 4.24.9
This advisory documents the impact of an internally found vulnerability in Arista EOS for security ACL bypass. The impact of this
5.8
MEDIUM
CVE-2021-28509
>= 4.23 and <= 4.23.11
This advisory documents the impact of an internally found vulnerability in Arista EOS state streaming telemetry agent TerminAttr a
6.1
MEDIUM
CVE-2021-28508
>= 4.23 and <= 4.23.11
This advisory documents the impact of an internally found vulnerability in Arista EOS state streaming telemetry agent TerminAttr a
6.8
MEDIUM
CVE-2021-28505
>= 4.26 and < 4.26.4m
On affected Arista EOS platforms, if a VXLAN match rule exists in an IPv4 access-list that is applied to the ingress of an L2 or a
7.5
HIGH
CVE-2021-28504
>= 4.26 and < 4.26.4m
On Arista Strata family products which have “TCAM profile” feature enabled when Port IPv4 access-list has a rule which matches
7.5
HIGH
CVE-2022-26300
all versions
EOS v2.1.0 was discovered to contain a heap-buffer-overflow via the function txn_test_gen_plugin.
7.5
HIGH
CVE-2021-28503
>= 4.22 and <= 4.22.9m
The impact of this vulnerability is that Arista's EOS eAPI may skip re-evaluating user credentials when certificate based authenti
7.4
HIGH
CVE-2021-28507
>= 4.23.0 and <= 4.23.9m
An issue has recently been discovered in Arista EOS where, under certain conditions, the service ACL configured for OpenConfig gNO
5.5
MEDIUM
CVE-2021-28506
>= 4.24.0 and <= 4.24.7m
An issue has recently been discovered in Arista EOS where certain gNOI APIs incorrectly skip authorization and authentication whic
9.1
CRITICAL
CVE-2021-28500
< 4.20
An issue has recently been discovered in Arista EOS where the incorrect use of EOS's AAA API’s by the OpenConfig and TerminAttr
9.1
CRITICAL
CVE-2021-28496
>= 4.22 and <= 4.22.7m
On systems running Arista EOS and CloudEOS with the affected release version, when using shared secret profiles the password confi
5.7
MEDIUM
CVE-2020-25686
>= 4.21 and < 4.21.14m
A flaw was found in dnsmasq before version 2.83. When receiving a query, dnsmasq does not check for an existing pending request fo
3.7
LOW
CVE-2020-25685
>= 4.21 and < 4.21.14m
A flaw was found in dnsmasq before version 2.83. When getting a reply from a forwarded query, dnsmasq checks in forward.c:reply_qu
3.7
LOW
CVE-2020-25684
>= 4.21 and < 4.21.14m
A flaw was found in dnsmasq before version 2.83. When getting a reply from a forwarded query, dnsmasq checks in the forward.c:repl
3.7
LOW
CVE-2020-24360
>= 4.22.0f and <= 4.22.6m
An issue with ARP packets in Arista’s EOS affecting the 7800R3, 7500R3, and 7280R3 series of products may result in issues that
7.4
HIGH
CVE-2020-15898
>= 4.21.0f and <= 4.21.4.1f
In Arista EOS malformed packets can be incorrectly forwarded across VLAN boundaries in one direction. This vulnerability is only s
5.3
MEDIUM
CVE-2020-26569
>= 4.21.0f and <= 4.21.12m
In EVPN VxLAN setups in Arista EOS, specific malformed packets can lead to incorrect MAC to IP bindings and as a result packets ca
5.9
MEDIUM
CVE-2020-15897
< 4.21.12m
Arista EOS before 4.21.12M, 4.22.x before 4.22.7M, 4.23.x before 4.23.5M, and 4.24.x before 4.24.2F allows remote attackers to cau
7.5
HIGH
CVE-2020-17355
>= 4.21.0 and < 4.21.12m
Arista EOS before 4.21.12M, 4.22.x before 4.22.7M, 4.23.x before 4.23.5M, and 4.24.x before 4.24.2F allows remote attackers to cau
7.5
HIGH
CVE-2019-18948
>= 4.21.0 and <= 4.21.8m
An issue was found in Arista EOS. Specific malformed ARP packets can impact the software forwarding of VxLAN packets. This issue i
7.5
HIGH
CVE-2020-10188
<= 4.20.15
utility.c in telnetd in netkit telnet through 0.17 allows remote attackers to execute arbitrary code via short writes or urgent da
9.8
CRITICAL
CVE-2015-6815
all versions
The process_tx_desc function in hw/net/e1000.c in QEMU before 2.4.0.1 does not properly process transmit descriptor data when send
3.5
LOW
CVE-2015-5745
all versions
Buffer overflow in the send_control_msg function in hw/char/virtio-serial-bus.c in QEMU before 2.4.0 allows guest users to cause a
6.5
MEDIUM
CVE-2015-5278
all versions
The ne2000_receive function in hw/net/ne2000.c in QEMU before 2.4.0.1 allows attackers to cause a denial of service (infinite loop
6.5
MEDIUM
CVE-2015-5239
all versions
Integer overflow in the VNC display driver in QEMU before 2.1.0 allows attachers to cause a denial of service (process crash) via
6.5
MEDIUM
CVE-2019-17596
<= 4.23.1f
Go before 1.12.11 and 1.3.x before 1.13.2 can panic upon an attempt to process network traffic containing an invalid DSA public ke
7.5
HIGH
CVE-2018-14008
<= 4.21.0f
Arista EOS through 4.21.0F allows a crash because 802.1x authentication is mishandled.
6.5
MEDIUM
CVE-2018-1000618
all versions
EOSIO/eos eos version after commit f1545dd0ae2b77580c2236fdb70ae7138d2c7168 contains a stack overflow vulnerability in abi_seriali
9.8
CRITICAL
CVE-2018-11548
all versions
An issue was discovered in EOS.IO DAWN 4.2. plugins/net_plugin/net_plugin.cpp does not limit the number of P2P connections from th
7.5
HIGH
CVE-2018-5254
< 4.20.2f
Arista EOS before 4.20.2F allows remote BGP peers to cause a denial of service (Rib agent restart) via a malformed path attribute
7.5
HIGH
CVE-2018-5255
>= 4.19 and < 4.19.4m
The Mlag agent in Arista EOS 4.19 before 4.19.4M and 4.20 before 4.20.2F allows remote attackers to cause a denial of service (age
6.5
MEDIUM
CVE-2017-18017
all versions
The tcpmss_mangle_packet function in net/netfilter/xt_TCPMSS.c in the Linux kernel before 4.11, and 4.9.x before 4.9.36, allows re
9.8
CRITICAL
CVE-2017-14491
<= 4.15
Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrar
9.8
CRITICAL
CVE-2015-8236
<= 4.11.11
Arista EOS before 4.11.12, 4.12 before 4.12.11, 4.13 before 4.13.14M, 4.14 before 4.14.5FX.5, and 4.15 before 4.15.0FX1.1 allows r
CVE-2015-6855
all versions
hw/ide/core.c in QEMU does not properly restrict the commands accepted by an ATAPI device, which allows guest users to cause a den
7.5
HIGH
CVE-2015-3214
all versions
The pit_ioport_read in i8254.c in the Linux kernel before 2.6.33 and QEMU before 2.3.1 does not distinguish between read lengths a
CVE-2015-5165
all versions
The C+ mode offload emulation in the RTL8139 network card device model in QEMU, as used in Xen 4.5.x and earlier, allows remote at
CVE-2015-3209
all versions
Heap-based buffer overflow in the PCNET controller in QEMU allows remote attackers to execute arbitrary code by sending a packet w
CVE-2014-7169
>= 4.9.0 and < 4.9.12
GNU Bash through 4.3 bash43-025 processes trailing strings after certain malformed function definitions in the values of environme
9.8
CRITICAL
CVE-2014-6271
>= 4.9.0 and < 4.9.12
GNU Bash through 4.3 processes trailing strings after function definitions in the values of environment variables, which allows re
9.8
CRITICAL
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin