Arista networks Eos Vulnerabilities

Traffic Policy Misconfiguration in Arista EOS Network Infrastructure

CVE-2024-9448

Arista NetworksEos7.5HIGH

Credential Logging Vulnerability in Arista EOS Affecting gNMI Transport

CVE-2025-0936

Arista NetworksEos6.5MEDIUM

Dynamic ACL Installation Issue in Arista EOS with 802.1X Configuration

CVE-2024-8000

Arista NetworksEos5.3MEDIUM

Memory Leak Vulnerability in Arista EOS BGP Configuration

CVE-2024-9135

Arista NetworksEos5.3MEDIUM

Configuration Bypass Vulnerability in Arista EOS Network Switch by Arista Networks

CVE-2025-1260

Arista NetworksEos9.1CRITICAL

Data Exposure Vulnerability in Arista EOS with OpenConfig Configuration

CVE-2025-1259

Arista NetworksEos7.7HIGH

On affected platforms running Arista EOS with VXLAN configured, malformed or truncated packets received over a VXLAN tunnel and forwarded in hardware can cause egress ports to be unable to forward packets

CVE-2023-24548

Arista NetworksEos5.3MEDIUM

On affected platforms running Arista EOS with mirroring to multiple destinations configured, an internal system error may trigger a kernel panic and cause system reload.

CVE-2023-3646

Arista NetworksEos5.9MEDIUM

On the affected platforms running EOS, a malformed DHCP packet might cause the DHCP relay agent to restart.

CVE-2023-24510

Arista NetworksArista Eos7.5HIGH

On affected modular platforms running Arista EOS equipped with both redundant supervisor modules and having the redundancy protocol configured with RPR or SSO, an existing unprivileged user can login to the standby supervisor as a root user, leading t ...

CVE-2023-24509

Arista NetworksArista Eos9.3CRITICAL

On affected platforms running Arista EOS with SNMP configured, a specially crafted packet can cause a memory leak in the snmpd process.

CVE-2023-24511

Arista NetworksEos5.3MEDIUM

On affected platforms running Arista CloudEOS a size check bypass issue in the Software Forwarding Engine (Sfe) may allow buffer over reads in later code. Additionally, depending on configured options this may cause a recomputation of the TCP checksum ...

CVE-2023-24513

Arista NetworksEos6.5MEDIUM

On affected platforms running Arista CloudEOS an issue in the Software Forwarding Engine (Sfe) can lead to a potential denial of service attack by sending malformed packets to the switch.

CVE-2023-24545

Arista NetworksEos7.5HIGH

For certain systems running EOS, a Precision Time Protocol (PTP) packet of a management/signaling message with an invalid Type-Length-Value (TLV) causes the PTP agent to restart. Repeated restarts of the service will make the service unavailable.

CVE-2021-28510

Arista NetworksEos5.3MEDIUM

This advisory documents the impact of an internally found vulnerability in Arista EOS for security ACL bypass. The impact of this vulnerability is that the security ACL drop rule might be bypassed if a NAT ACL rule filter with permit action matches t ...

CVE-2021-28511

Arista NetworksEos5.8MEDIUM

TerminAttr streams IPsec sensitive data in clear text to other authorized users in CVP

CVE-2021-28508

Arista NetworksArista Eos6.8MEDIUM

TerminAttr streams MACsec sensitive data in clear text to other authorized users in CVP

CVE-2021-28509

Arista NetworksArista Eos6.1MEDIUM

On affected Arista EOS platforms, if a VXLAN match rule exists in an IPv4 access-list that is applied to the ingress of an L2 or an L3 port/SVI, the VXLAN rule and subsequent ACL rules in that access list will ignore the specified IP protocol.

CVE-2021-28505

Arista NetworksEos7.5HIGH

On Arista Strata family products which have “TCAM profile” feature enabled when Port IPv4 access-list has a rule which matches on “vxlan” as protocol then that rule and subsequent rules ( rules declared after it in ACL ) do not match on IP protocol fi ...

CVE-2021-28504

Arista NetworksEos7.5HIGH

In Arista's EOS software affected releases, eAPI might skip re-evaluating user credentials when certificate based authentication is used, which allows remote attackers to access the device via eAPI.

CVE-2021-28503

Arista NetworksArista Eos7.4HIGH

An issue has recently been discovered in Arista EOS where the incorrect use of EOS's AAA API’s by the OpenConfig and TerminAttr agents could result in unrestricted access to the device for local users with nopassword configuration.

CVE-2021-28500

Arista NetworksArista Eos9.1CRITICAL

An issue has recently been discovered in Arista EOS where certain gNOI APIs incorrectly skip authorization and authentication which could potentially allow a factory reset of the device.

CVE-2021-28506

Arista NetworksEos9.1CRITICAL

An issue has recently been discovered in Arista EOS where, under certain conditions, the service ACL configured for OpenConfig gNOI and OpenConfig RESTCONF might be bypassed, which results in the denied requests being forwarded to the agent.

CVE-2021-28507

Arista NetworksEos5.5MEDIUM

In Arista's EOS software affected releases, the shared secret profiles sensitive configuration might be leaked when displaying output over eAPI or other JSON outputs to authenticated users on the device.

CVE-2021-28496

Arista NetworksArista Eos5.7MEDIUM

Vulnerability Published:

Sort By:

8 May 2025

Traffic Policy Misconfiguration in Arista EOS Network Infrastructure

7 May 2025

Credential Logging Vulnerability in Arista EOS Affecting gNMI Transport

4 March 2025

Dynamic ACL Installation Issue in Arista EOS with 802.1X Configuration

Memory Leak Vulnerability in Arista EOS BGP Configuration

Configuration Bypass Vulnerability in Arista EOS Network Switch by Arista Networks

Data Exposure Vulnerability in Arista EOS with OpenConfig Configuration

29 August 2023

On affected platforms running Arista EOS with VXLAN configured, malformed or truncated packets received over a VXLAN tunnel and forwarded in hardware can cause egress ports to be unable to forward packets

On affected platforms running Arista EOS with mirroring to multiple destinations configured, an internal system error may trigger a kernel panic and cause system reload.

5 June 2023

On the affected platforms running EOS, a malformed DHCP packet might cause the DHCP relay agent to restart.

13 April 2023

On affected modular platforms running Arista EOS equipped with both redundant supervisor modules and having the redundancy protocol configured with RPR or SSO, an existing unprivileged user can login to the standby supervisor as a root user, leading t ...

12 April 2023

On affected platforms running Arista EOS with SNMP configured, a specially crafted packet can cause a memory leak in the snmpd process.

On affected platforms running Arista CloudEOS a size check bypass issue in the Software Forwarding Engine (Sfe) may allow buffer over reads in later code. Additionally, depending on configured options this may cause a recomputation of the TCP checksum ...

On affected platforms running Arista CloudEOS an issue in the Software Forwarding Engine (Sfe) can lead to a potential denial of service attack by sending malformed packets to the switch.

26 January 2023

For certain systems running EOS, a Precision Time Protocol (PTP) packet of a management/signaling message with an invalid Type-Length-Value (TLV) causes the PTP agent to restart. Repeated restarts of the service will make the service unavailable.

5 August 2022

This advisory documents the impact of an internally found vulnerability in Arista EOS for security ACL bypass. The impact of this vulnerability is that the security ACL drop rule might be bypassed if a NAT ACL rule filter with permit action matches t ...

26 May 2022

TerminAttr streams IPsec sensitive data in clear text to other authorized users in CVP

TerminAttr streams MACsec sensitive data in clear text to other authorized users in CVP

14 April 2022

On affected Arista EOS platforms, if a VXLAN match rule exists in an IPv4 access-list that is applied to the ingress of an L2 or an L3 port/SVI, the VXLAN rule and subsequent ACL rules in that access list will ignore the specified IP protocol.

1 April 2022

On Arista Strata family products which have “TCAM profile” feature enabled when Port IPv4 access-list has a rule which matches on “vxlan” as protocol then that rule and subsequent rules ( rules declared after it in ACL ) do not match on IP protocol fi ...

4 February 2022

In Arista's EOS software affected releases, eAPI might skip re-evaluating user credentials when certificate based authentication is used, which allows remote attackers to access the device via eAPI.

14 January 2022

An issue has recently been discovered in Arista EOS where the incorrect use of EOS's AAA API’s by the OpenConfig and TerminAttr agents could result in unrestricted access to the device for local users with nopassword configuration.

An issue has recently been discovered in Arista EOS where certain gNOI APIs incorrectly skip authorization and authentication which could potentially allow a factory reset of the device.

An issue has recently been discovered in Arista EOS where, under certain conditions, the service ACL configured for OpenConfig gNOI and OpenConfig RESTCONF might be bypassed, which results in the denied requests being forwarded to the agent.

21 October 2021

In Arista's EOS software affected releases, the shared secret profiles sensitive configuration might be leaked when displaying output over eAPI or other JSON outputs to authenticated users on the device.