Arista Security Advisories

Date: August 20th, 2021 Version: 1.0 Revision Date Changes 1.0 August 20th, 2021 Initial Release     The CVE-ID tracking this issue: CVE-2021-28494 CVSSv3.1 Base Score: 9.6( CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:H) Description This advisory documents the impact of an internally found vulnerability in Arista's MOS (Metamako Operating System) software which is supported on the 7130 product line. The effect of this vulnerability is that, under certain conditions, ...

Date: August 20th, 2021 Version: 1.0 Revision Date Changes 1.0 August 20th, 2021 Initial Release     The CVE-ID tracking this issue: CVE-2021-28493 CVSSv3.1 Base Score: 8.4 (CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:H) Description This advisory documents the impact of an internally found vulnerability in Arista's MOS (Metamako Operating System) software which is supported on the 7130 product line. The effect of this vulnerability is that, under certain conditions, ...

Date: August 20th, 2021 Version: 1.0 Revision Date Changes 1.0 August 20th, 2021 Initial Release     The CVE-ID tracking this issue: CVE-2021-28495 CVSSv3.1 Base Score: 7.2 (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:L) Description This advisory documents the impact of an internally found vulnerability in Arista's MOS (Metamako Operating System) software which is supported on the 7130 product line. Under certain conditions, user authentication can be bypassed when ...

Date: August 20th, 2021 Version: 1.0 Revision Date Changes 1.0 August 20th, 2021 Initial Release     The CVE-ID tracking this issue: CVE-2021-28497 CVSSv3.1 Base Score: 4.4 (CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L) Description This advisory documents the impact of an internally found vulnerability in Arista's MOS (Metamako Operating System) software which is supported on the 7130 product line. Under certain conditions, the bash shell may be accessible to unpriv ...

Date: August 20th, 2021 Version: 1.0 Revision Date Changes 1.0 August 20th, 2021 Initial Release     The CVE-ID tracking this issue: CVE-2021-28498 CVSSv3.1 Base Score: 8.7 (CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:H/A:H) The CVE-ID tracking this issue: CVE-2021-28499 CVSSv3.1 Base Score: 6.3 (CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:L) Description This advisory documents the impact of two internally found vulnerabilities in Arista's MOS (Metamako Operating System) ...