Arista DCS-7050QX-32S-R 4.20.9M, DCS-7050CX3-32S-R 4.20.11M, and DCS-7280SRAM-48C6-R 4.22.0.1F devices (and possibly other products) allow malicious users to bypass intended TACACS+ shell restrictions via a | character. NOTE: the vendor reports that this is a configuration issue relating to an overly permissive regular expression in the TACACS+ server permitted commands
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
arista dcs-7050qx-32s-r_firmware 4.20.9m |
||
arista dcs-7050cx3-32s-r_firmware 4.20.11m |
||
arista dcs-7280sram-48c6-r_firmware 4.22.0.1f |