Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
arista eos vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2020-25685
A flaw was found in dnsmasq before version 2.83. When getting a reply from a forwarded query, dnsmasq checks in forward.c:reply_query(), which is the forwarded query that matches the reply, by only using a weak hash of the query name. Due to the weak hash (CRC32 when dnsmasq is c...
Thekelleys Dnsmasq
Fedoraproject Fedora 32
Fedoraproject Fedora 33
Debian Debian Linux 10.0
Arista Eos
2 Github repositories
1 Article
4.3
CVSSv2
CVE-2020-26569
In EVPN VxLAN setups in Arista EOS, specific malformed packets can lead to incorrect MAC to IP bindings and as a result packets can be incorrectly forwarded across VLAN boundaries. This can result in traffic being discarded on the receiving VLAN. This affects versions: 4.21.12M a...
Arista Eos
4.3
CVSSv2
CVE-2020-17355
Arista EOS prior to 4.21.12M, 4.22.x prior to 4.22.7M, 4.23.x prior to 4.23.5M, and 4.24.x prior to 4.24.2F allows remote malicious users to cause a denial of service (restart of agents) by crafting a malformed DHCP packet which leads to an incorrect route being installed.
Arista Eos
4.3
CVSSv2
CVE-2020-11622
A vulnerability exists in Arista’s Cloud EOS VM / vEOS 4.23.2M and below releases in the 4.23.x train, 4.22.4M and below releases in the 4.22.x train, 4.21.3M to 4.21.9M releases in the 4.21.x train, 4.21.3FX-7368.*, 4.21.4-FCRFX.*, 4.21.4.1, 4.21.7.1, 4.22.2.0.1, 4.22.2.2....
Arista Cloudeos 4.21.3fx-7368
Arista Cloudeos
Arista Cloudeos 4.21.4-fcrfx
Arista Cloudeos 4.21.4.1
Arista Cloudeos 4.21.7.1
Arista Cloudeos 4.22.2.0.1
Arista Cloudeos 4.22.2.2.1
Arista Cloudeos 4.22.3.1
Arista Cloudeos 4.23.2.1
Arista Veos 4.21.3fx-7368
Arista Veos
Arista Veos 4.21.4-fcrfx
Arista Veos 4.21.4.1
Arista Veos 4.21.7.1
Arista Veos 4.22.2.0.1
Arista Veos 4.22.2.2.1
Arista Veos 4.22.3.1
Arista Veos 4.23.2.1
4.3
CVSSv2
CVE-2019-14810
A vulnerability has been found in the implementation of the Label Distribution Protocol (LDP) protocol in EOS. Under race conditions, the LDP agent can establish an LDP session with a malicious peer potentially allowing the possibility of a Denial of Service (DoS) attack on route...
Arista Extensible Operating System
Arista Extensible Operating System 4.17
Arista Extensible Operating System 4.22.1f
Arista Extensible Operating System 4.18
4
CVSSv2
CVE-2021-28496
On systems running Arista EOS and CloudEOS with the affected release version, when using shared secret profiles the password configured for use by BiDirectional Forwarding Detection (BFD) will be leaked when displaying output over eAPI or other JSON outputs to other authenticated...
Arista Eos
4
CVSSv2
CVE-2015-5239
Integer overflow in the VNC display driver in QEMU prior to 2.1.0 allows attachers to cause a denial of service (process crash) via a CLIENT_CUT_TEXT message, which triggers an infinite loop.
Qemu Qemu
Fedoraproject Fedora 22
Fedoraproject Fedora 23
Fedoraproject Fedora 21
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 15.04
Suse Linux Enterprise Server 11
Suse Linux Enterprise Desktop 11
Suse Linux Enterprise Debuginfo 11
Suse Linux Enterprise Server 12
Suse Linux Enterprise Software Development Kit 12
Suse Linux Enterprise Software Development Kit 11
Suse Linux Enterprise Desktop 12
Arista Eos 4.15
Arista Eos 4.14
Arista Eos 4.13
Arista Eos 4.12
4
CVSSv2
CVE-2015-5278
The ne2000_receive function in hw/net/ne2000.c in QEMU prior to 2.4.0.1 allows malicious users to cause a denial of service (infinite loop and instance crash) or possibly execute arbitrary code via vectors related to receiving packets.
Qemu Qemu
Fedoraproject Fedora 21
Fedoraproject Fedora 22
Fedoraproject Fedora 23
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 15.04
Arista Eos 4.12
Arista Eos 4.13
Arista Eos 4.14
Arista Eos 4.15
4
CVSSv2
CVE-2015-5745
Buffer overflow in the send_control_msg function in hw/char/virtio-serial-bus.c in QEMU prior to 2.4.0 allows guest users to cause a denial of service (QEMU process crash) via a crafted virtio control message.
Qemu Qemu
Fedoraproject Fedora 21
Fedoraproject Fedora 22
Fedoraproject Fedora 23
Arista Eos 4.12
Arista Eos 4.13
Arista Eos 4.14
Arista Eos 4.15
4
CVSSv2
CVE-2018-5255
The Mlag agent in Arista EOS 4.19 prior to 4.19.4M and 4.20 prior to 4.20.2F allows remote malicious users to cause a denial of service (agent restart) via crafted UDP packets.
Arista Eos
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4644
unprivileged
CVE-2024-3494
CVE-2024-22460
CVE-2024-26026
CVE-2024-23473
firewall
CVE-2024-28889
XML external entity
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »