Known Vulnerabilities for Cloudvision Portal by Arista

Listed below are 9 of the newest known vulnerabilities associated with "Cloudvision Portal" by "Arista".

These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.

Data on known vulnerable versions is also displayed based on information from known CPEs

Known Vulnerabilities

CVE Shortened Description Severity Publish Date Last Modified
CVE-2023-24546 json On affected versions of the CloudVision Portal improper access controls on the connection from devices to CloudVision could e... 8.1 - HIGH 2023-06-13 2023-11-07
CVE-2022-29071 json This advisory documents an internally found vulnerability in the on premises deployment model of Arista CloudVision Portal (C... 5.5 - MEDIUM 2022-08-05 2023-07-21
CVE-2020-24333 json A vulnerability in Arista’s CloudVision Portal (CVP) prior to 2020.2 allows users with “read-only” or greater access ri... 6.5 - MEDIUM 2020-09-22 2021-07-21
CVE-2020-13881 json In support.c in pam_tacplus 1.3.8 through 1.5.1, the TACACS+ shared secret gets logged via syslog if the DEBUG loglevel and j... 7.5 - HIGH 2020-06-06 2022-04-05
CVE-2019-18615 json In CloudVision Portal (CVP) for all releases in the 2018.2 Train, under certain conditions, the application logs user passwor... 4.9 - MEDIUM 2019-12-19 2021-07-21
CVE-2019-18181 json In CloudVision Portal all releases in the 2018.1 and 2018.2 Code train allows users with read-only permissions to bypass perm... 7.8 - HIGH 2019-12-19 2020-08-24
CVE-2019-17596 json Go before 1.12.11 and 1.3.x before 1.13.2 can panic upon an attempt to process network traffic containing an invalid DSA publ... 7.5 - HIGH 2019-10-24 2023-11-07
CVE-2018-12357 json Arista CloudVision Portal through 2018.1.1 has Incorrect Permissions. 6.5 - MEDIUM 2019-08-15 2020-08-24
CVE-2016-9012 json CloudVision Portal (CVP) before 2016.1.2.1 allows remote authenticated users to gain access to the internal configuration mec... 8.8 - HIGH 2017-01-23 2017-01-26

Known Affected Configurations (CPE V2.3)

Type Vendor Product Version Update Edition Language
ApplicationAristaCloudvision Portal2020.2.0
ApplicationAristaCloudvision Portal2020.1.2
ApplicationAristaCloudvision Portal2019.1.0
ApplicationAristaCloudvision Portal2018.2.3
ApplicationAristaCloudvision Portal2018.2.0
ApplicationAristaCloudvision Portal2018.1.4
ApplicationAristaCloudvision Portal2018.1.2
ApplicationAristaCloudvision Portal2018.1.1
ApplicationAristaCloudvision Portal2018.1.0
ApplicationAristaCloudvision Portal2017.2.3
ApplicationAristaCloudvision Portal2017.2.2
ApplicationAristaCloudvision Portal2017.2.1
ApplicationAristaCloudvision Portal2017.2.0
ApplicationAristaCloudvision Portal2017.1.1.1
ApplicationAristaCloudvision Portal2017.1.1
ApplicationAristaCloudvision Portal2017.1.0.1
ApplicationAristaCloudvision Portal2017.1.0
ApplicationAristaCloudvision Portal2016.1.2.3
ApplicationAristaCloudvision Portal2016.1.2.1
ApplicationAristaCloudvision Portal2016.1.2
Results limited to 20 most recent known configurations
© CVE.report 2026 |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

Free CVE JSON API cve.report/api

CVE.report and Source URL Uptime Status status.cve.report