Unexpected Device Reload Vulnerability in Arista EOS
CVE-2025-8870

5.6MEDIUM

Key Information:

Vendor: Arista Networks
Status: Eos
Vendor: CVE Published:; 14 November 2025

🔔 Create Arista Networks Vulnerability Alert

What is CVE-2025-8870?

Certain serial console inputs on Arista EOS can lead to unanticipated device reloads, potentially causing service interruptions. This vulnerability highlights the importance of strict input validation to maintain system stability and prevent unexpected behavior in network devices.

Affected Version(s)

EOS 710X Series 4.34.2FX

References

https://www.arista.com/en/support/advisories-notices/secu...

CVSS V4

Score:

5.6

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

High

Attack Vector:

Physical

Attack Complexity:

Low

Attack Required:

Physical

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 14, 2025
Vulnerability Reserved
Aug 11, 2025

JSON