Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
On affected platforms running Arista CloudEOS a size check bypass issue in the Software Forwarding Engine (Sfe) may allow buffer over reads in later code. Additionally, depending on configured options this may cause a recomputation of the TCP checksum ...
Vulnerability Description
On affected platforms running Arista CloudEOS an issue in the Software Forwarding Engine (Sfe) can lead to a potential denial of service attack by sending malformed packets to the switch. This causes a leak of packet buffers and if enough malformed packets are received, the switch may eventually stop forwarding traffic.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L
Vulnerability Type
缓冲区上溢读取
Vulnerability Title
Arista Networks CloudEOS 缓冲区错误漏洞
Vulnerability Description
Arista Networks CloudEOS是 EOS (Arista Networks Extensible Operating System)的新平台版本,支持 Amazon Web Service (AWS)、Microsoft Azure 和其他公共云。 Arista Networks CloudEOS 存在安全漏洞,该漏洞源于软件转发引擎 (Sfe) 中的大小检查绕过问题可能允许在后续代码中进行缓冲区读取。受影响的产品和版本:Arista CloudEOS 4.29.1F 及以下版本,4.2
CVSS Information
N/A
Vulnerability Type
N/A