Known Vulnerabilities for products from Arista
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Arista".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Additional devices specifications by Arista can be found at device.report : Arista
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2021-28511 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 6.5 - MEDIUM | 2022-08-05 | 2022-08-15 |
| CVE-2021-28510 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 7.5 - HIGH | 2023-01-26 | 2023-06-30 |
| CVE-2021-28509 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 6.1 - MEDIUM | 2022-05-26 | 2022-06-09 |
| CVE-2021-28508 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 6.1 - MEDIUM | 2022-05-26 | 2022-06-09 |
| CVE-2021-28507 | An issue has recently been discovered in Arista EOS where, under certain conditions, the service ACL configured for OpenConfi... | 7.1 - HIGH | 2022-01-14 | 2022-07-14 |
| CVE-2021-28506 | An issue has recently been discovered in Arista EOS where certain gNOI APIs incorrectly skip authorization and authentication... | 9.1 - CRITICAL | 2022-01-14 | 2022-07-14 |
| CVE-2021-28505 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 7.5 - HIGH | 2022-04-14 | 2022-04-26 |
| CVE-2021-28504 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 7.5 - HIGH | 2022-04-01 | 2022-04-12 |
| CVE-2021-28503 | The impact of this vulnerability is that Arista's EOS eAPI may skip re-evaluating user credentials when certificate based aut... | 9.8 - CRITICAL | 2022-02-04 | 2022-08-02 |
| CVE-2021-28501 | An issue has recently been discovered in Arista EOS where the incorrect use of EOS's AAA API’s by the OpenConfig and Termin... | 7.8 - HIGH | 2022-01-14 | 2022-07-14 |
| CVE-2021-28500 | An issue has recently been discovered in Arista EOS where the incorrect use of EOS's AAA API’s by the OpenConfig and Termin... | 7.8 - HIGH | 2022-01-14 | 2023-08-17 |
| CVE-2021-28499 | In Arista's MOS (Metamako Operating System) software which is supported on the 7130 product line, user account passwords set ... | 5.5 - MEDIUM | 2021-09-09 | 2022-07-29 |
| CVE-2021-28498 | In Arista's MOS (Metamako Operating System) software which is supported on the 7130 product line, user enable passwords set i... | 7.8 - HIGH | 2021-09-09 | 2023-06-30 |
| CVE-2021-28497 | In Arista's MOS (Metamako Operating System) software which is supported on the 7130 product line, under certain conditions, t... | 7.8 - HIGH | 2021-09-09 | 2021-09-22 |
| CVE-2021-28496 | On systems running Arista EOS and CloudEOS with the affected release version, when using shared secret profiles the password ... | 6.5 - MEDIUM | 2021-10-21 | 2022-07-30 |
| CVE-2021-28495 | In Arista's MOS (Metamako Operating System) software which is supported on the 7130 product line, under certain conditions, u... | 9.8 - CRITICAL | 2021-09-09 | 2021-09-22 |
| CVE-2021-28494 | In Arista's MOS (Metamako Operating System) software which is supported on the 7130 product line, under certain conditions, a... | 8.8 - HIGH | 2021-09-09 | 2021-09-22 |
| CVE-2021-28493 | In Arista's MOS (Metamako Operating System) software which is supported on the 7130 product line, under certain conditions, a... | 7.8 - HIGH | 2021-09-09 | 2021-09-22 |
| CVE-2020-26569 | In EVPN VxLAN setups in Arista EOS, specific malformed packets can lead to incorrect MAC to IP bindings and as a result packe... | 5.9 - MEDIUM | 2020-12-28 | 2021-01-27 |
| CVE-2020-26147 | An issue was discovered in the Linux kernel 5.8.9. The WEP, WPA, WPA2, and WPA3 implementations reassemble fragments even tho... | 5.4 - MEDIUM | 2021-05-11 | 2022-07-12 |
Known software with vulnerabilities from Arista
| Type | Vendor | Product | Version |
|---|---|---|---|
| Hardware | Arista | 7010t-48 | - |
| Hardware | Arista | 7020r | - |
| Hardware | Arista | 7280e | - |
| Hardware | Arista | 7280r | - |
| Hardware | Arista | 7280r2 | - |
| Hardware | Arista | 7280r3 | - |
| Hardware | Arista | 7500e | - |
| Hardware | Arista | 7500r | - |
| Hardware | Arista | 7500r2 | - |
| Hardware | Arista | 7500r3 | - |
| Application | Arista | Cloudeos | 4.21.3fx-7368 |
| Application | Arista | Cloudvision Exchange | - |
| Application | Arista | Cloudvision Portal | 2015.1.1 |
| Hardware | Arista | Dcs-7050s | - |
| Hardware | Arista | Dcs-7050sx | - |
| Hardware | Arista | Dcs-7050t | - |
| Operating System | Arista | Eos | 4.15 |
| Operating System | Arista | Extensible Operating System | - |
| Application | Arista | Veos | 4.21.3fx-7368 |