Disk Encryption Flaw in Arista CloudVision Appliance
CVE-2024-7142

Currently unrated

Key Information:

Vendor: Arista Networks
Vendor: CVE Published:; 10 January 2025

🔔 Create Arista Networks Vulnerability Alert

What is CVE-2024-7142?

The Arista CloudVision Appliance (CVA), specifically on DCA-350E-CV models, has a notable vulnerability where its hardware disk encryption functionality may fail to execute correctly. This oversight leaves the disk data unprotected, posing significant risks for data security on affected appliances. Without effective encryption, sensitive information could be exposed to unauthorized access.

References

https://www.arista.com/en/support/advisories-notices/secu...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 10, 2025