Arista networks Eos Vulnerabilities

IPSec Vulnerability in Arista EOS Affecting Hardware Support

CVE-2026-2379

Arista NetworksEos8.2HIGH

Tunnel Decapsulation Vulnerability in Arista EOS Networking Equipment

CVE-2026-7473

Arista NetworksEos👾🟡EPSS 27%🦅6.9MEDIUM

Authentication Vulnerability in Redis Service on CVX Servers by Arista Networks

CVE-2025-5088

Arista NetworksEos / Cloudvision Exch...8.7HIGH

Denial of Service Vulnerability in CVX Product by Arista Networks

CVE-2025-5090

Arista NetworksEos / Cloudvision Exch...7.1HIGH

Denial of Service Vulnerability in EOS Switches Connected to CVX Servers by Arista

CVE-2025-5089

Arista NetworksEos / Cloudvision Exch...7.1HIGH

Arista EOS Vulnerability Affecting IPsec Traffic Processing

CVE-2025-8873

Arista NetworksEos8.7HIGH

Bypass of 802.1x Authentication on Arista EOS

CVE-2023-5502

Arista NetworksEos8.2HIGH

Configuration Management Vulnerability in Arista EOS

CVE-2024-27892

Arista NetworksEos7.2HIGH

Unexpected Configuration Application in Arista EOS Due to OpenConfig Vulnerability

CVE-2024-27890

Arista NetworksEos7.2HIGH

On affected platforms running Arista EOS with MACsec and egress ACLs configured on the same interfaces, the ACL policies may not be enforced for packets egressing on those ports.

CVE-2024-27891

Arista NetworksEos6.9MEDIUM

In Arista’s EOS when in 802.1X mode, multi-auth unauthenticated hosts might be allowed access to a switch port if there exists an EAPOL capable device in the fallback VLAN.

CVE-2024-6858

Arista NetworksEos6.5MEDIUM

MACsec Configuration Vulnerability in Arista EOS Products

CVE-2025-7048

Arista NetworksEos5.3MEDIUM

OSPFv3 Process High CPU Utilization in Arista EOS

CVE-2025-8872

Arista NetworksEos7.1HIGH

Unexpected Device Reload Vulnerability in Arista EOS

CVE-2025-8870

Arista NetworksEos5.6MEDIUM

UDP Vulnerability in Arista EOS Network Operating System

CVE-2025-6188

Arista NetworksEos7.5HIGH

Exposed Global Encryption Key in Arista EOS Logging

CVE-2025-3456

Arista NetworksEos3.8LOW

Ingress ACL Policy Bypass in Arista EOS Platforms

CVE-2025-2826

Arista NetworksEos2.6LOW

IPSec Vulnerability in Arista EOS with Anti-Replay Protection

CVE-2025-2796

Arista NetworksEos5.3MEDIUM

VLAN Isolation Breach in Arista EOS Network Switches

CVE-2024-11185

Arista NetworksEos6.5MEDIUM

Traffic Policy Misconfiguration in Arista EOS Network Infrastructure

CVE-2024-9448

Arista NetworksEos7.5HIGH

Credential Logging Vulnerability in Arista EOS Affecting gNMI Transport

CVE-2025-0936

Arista NetworksEos6.5MEDIUM

Dynamic ACL Installation Issue in Arista EOS with 802.1X Configuration

CVE-2024-8000

Arista NetworksEos5.3MEDIUM

Memory Leak Vulnerability in Arista EOS BGP Configuration

CVE-2024-9135

Arista NetworksEos5.3MEDIUM

Configuration Bypass Vulnerability in Arista EOS Network Switch by Arista Networks

CVE-2025-1260

Arista NetworksEos9.1CRITICAL

Data Exposure Vulnerability in Arista EOS with OpenConfig Configuration

CVE-2025-1259

Arista NetworksEos7.7HIGH

arista networks Eos Vulnerabilities

Vulnerability Published:

Sort By:

5 June 2026

IPSec Vulnerability in Arista EOS Affecting Hardware Support

Tunnel Decapsulation Vulnerability in Arista EOS Networking Equipment

Authentication Vulnerability in Redis Service on CVX Servers by Arista Networks

Denial of Service Vulnerability in CVX Product by Arista Networks

Denial of Service Vulnerability in EOS Switches Connected to CVX Servers by Arista

4 June 2026

Arista EOS Vulnerability Affecting IPsec Traffic Processing

Bypass of 802.1x Authentication on Arista EOS

Configuration Management Vulnerability in Arista EOS

Unexpected Configuration Application in Arista EOS Due to OpenConfig Vulnerability

On affected platforms running Arista EOS with MACsec and egress ACLs configured on the same interfaces, the ACL policies may not be enforced for packets egressing on those ports.

In Arista’s EOS when in 802.1X mode, multi-auth unauthenticated hosts might be allowed access to a switch port if there exists an EAPOL capable device in the fallback VLAN.

6 January 2026

MACsec Configuration Vulnerability in Arista EOS Products

16 December 2025

OSPFv3 Process High CPU Utilization in Arista EOS

14 November 2025

Unexpected Device Reload Vulnerability in Arista EOS

25 August 2025

UDP Vulnerability in Arista EOS Network Operating System

Exposed Global Encryption Key in Arista EOS Logging

27 May 2025

Ingress ACL Policy Bypass in Arista EOS Platforms

IPSec Vulnerability in Arista EOS with Anti-Replay Protection

VLAN Isolation Breach in Arista EOS Network Switches

8 May 2025

Traffic Policy Misconfiguration in Arista EOS Network Infrastructure

7 May 2025

Credential Logging Vulnerability in Arista EOS Affecting gNMI Transport

4 March 2025

Dynamic ACL Installation Issue in Arista EOS with 802.1X Configuration

Memory Leak Vulnerability in Arista EOS BGP Configuration

Configuration Bypass Vulnerability in Arista EOS Network Switch by Arista Networks

Data Exposure Vulnerability in Arista EOS with OpenConfig Configuration