Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1310 CNY

100%
Buy Us a Coffee

Arista Networks — Vulnerabilities & Security Advisories 80

Browse all 80 CVE security advisories affecting Arista Networks. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Arista Networks specializes in high-performance data center switching and cloud networking solutions, primarily serving enterprise and service provider infrastructure. With sixty-four recorded Common Vulnerabilities and Exposures (CVEs), the company’s historical attack surface has predominantly featured remote code execution, cross-site scripting, and privilege escalation flaws within its management interfaces and network operating systems. These vulnerabilities often stem from input validation errors or improper access controls in legacy software versions, allowing attackers to gain unauthorized administrative access or disrupt network services. While Arista maintains a robust security posture through regular firmware updates and secure boot mechanisms, past incidents highlight the risks associated with complex network management platforms. The company actively addresses these issues via security advisories, emphasizing the importance of timely patching for deployed infrastructure to mitigate potential exploitation by malicious actors targeting critical network backbone components.

Top products by Arista Networks: EOS Arista Edge Threat Management Arista EOS DANZ Monitoring Fabric Arista Edge Threat Management - Arista Next Generation Firewall (NGFW) CloudVision Portal Arista Edge Threat Management - Arista Next Generation Firewall EOS / CloudVision eXchange (CVX) Terminattr MOS Arista Edge Threat Management - Arista NG Firewall (NGFW) Arista Wireless Access Points EOS-Policy Based Routing (PBR) CloudVision Appliance CloudVision
CVE IDTitleCVSSSeverityPublished
CVE-2026-25624 Arista Edge Threat Management NGFW UI Administrative Cross-Site Scripting — Arista Edge Threat Management - Arista Next Generation Firewall (NGFW)CWE-79 5.7 Medium2026-06-05
CVE-2026-25623 Arista Edge Threat Management NGFW UI Arbitrary Command Execution — Arista Edge Threat Management - Arista Next Generation Firewall (NGFW)CWE-78 6.0 Medium2026-06-05
CVE-2026-25622 Arista Edge Threat Management NGFW Captive Portal Custom Handler Command Injection — Arista Edge Threat Management - Arista Next Generation Firewall (NGFW)CWE-78 6.0 Medium2026-06-05
CVE-2026-25621 Arista Edge Threat Management NGFW Reports Application Insecure Input Validation — Arista Edge Threat Management - Arista Next Generation Firewall (NGFW)CWE-78 6.0 Medium2026-06-05
CVE-2026-25620 Arista Edge Threat Management NGFW Captive Portal Encrypted Password Command Injection — Arista Edge Threat Management - Arista Next Generation Firewall (NGFW)CWE-78 6.0 Medium2026-06-05
CVE-2026-2379 Arista EOS IPsec Tunnel Sequence Number Mismatch via Interface Flaps when Anti-Replay is Disabled — EOSCWE-672 5.9 Medium2026-06-05
CVE-2026-7473 Arista EOS Unexpected Tunnel Protocol Decapsulation and Forwarding Bypass — EOSCWE-1023 5.8 Medium2026-06-05
CVE-2025-5088 Arista CloudVision Exchange (CVX) Cluster Privilege Escalation via MCS Redis Session — EOS / CloudVision eXchange (CVX)CWE-269 8.3 High2026-06-05
CVE-2025-5090 Arista CloudVision Exchange Cluster Instability via Unexpected Switch Messages — EOS / CloudVision eXchange (CVX)CWE-20 6.5 Medium2026-06-05
CVE-2025-5089 Arista EOS SysDB Agent Denial of Service via Malformed CVX Client/Server Messages — EOS / CloudVision eXchange (CVX)CWE-20 6.5 Medium2026-06-05
CVE-2025-8873 Arista EOS Dataplane Denial of Service via Malformed IPsec Packet — EOSCWE-1286 7.5 High2026-06-04
CVE-2023-5502 On affected platforms running Arista EOS with 802.1x authentication configured on the access/trunk ports, a malicious supplicant may bypass authentication. — EOSCWE-287 5.9 Medium2026-06-04
CVE-2024-27892 On affected platforms running Arista EOS with OpenConfig configured, a gNMI Set request can be run when it should have been rejected (SSL Profiles Enabled). — EOSCWE-306 9.6 Critical2026-06-04
CVE-2024-27890 On affected platforms running Arista EOS with OpenConfig configured, a gNMI Set request can be run when it should have been rejected (No SSL Profiles Enabled). — EOSCWE-306 9.6 Critical2026-06-04
CVE-2024-27891 On affected platforms running Arista EOS with MACsec and egress ACLs configured on the same interfaces, the ACL policies may not be enforced for packets egressing on those ports. — EOSCWE-284 5.3 Medium2026-06-04
CVE-2024-6858 In Arista’s EOS when in 802.1X mode, multi-auth unauthenticated hosts might be allowed access to a switch port if there exists an EAPOL capable device in the fallback VLAN. — EOSCWE-1287--2026-06-04
CVE-2025-7048 On affected platforms running Arista EOS with MACsec configuration, a specially crafted packet can cause the MACsec process to terminate unexpectedly. Continuous receipt of these packets with certain MACsec configurations can cause longer term disruption o — EOSCWE-805 4.3 Medium2026-01-06
CVE-2025-8872 A specially crafted packet can cause the OSFPv3 process to have high CPU utilization which may result in the OSFPv3 process being restarted — EOSCWE-400 6.5 Medium2025-12-16
CVE-2025-8870 On affected platforms running Arista EOS, certain serial console input might result in an unexpected reload of the device. — EOSCWE-248 4.9 Medium2025-11-14
CVE-2025-54549 Cryptographic validation of upgrade images could be circumventing by dropping a specifically crafted file into the upgrade ISO — DANZ Monitoring FabricCWE-347 5.9 Medium2025-10-29
CVE-2025-54548 On affected platforms, restricted users could view sensitive portions of the config database via a debug API (e.g., user password hashes) — DANZ Monitoring FabricCWE-200 4.3 Medium2025-10-29
CVE-2025-54547 On affected platforms, if SSH session multiplexing was configured on the client side, SSH sessions (e.g, scp, sftp) multiplexed onto the same channel could perform file-system operations after a configured session timeout expired — DANZ Monitoring FabricCWE-613 5.3 Medium2025-10-29
CVE-2025-54546 On affected platforms, restricted users could use SSH port forwarding to access host-internal services — DANZ Monitoring FabricCWE-732 7.5 High2025-10-29
CVE-2025-54545 On affected platforms, a restricted user could break out of the CLI sandbox to the system shell and elevate their privileges. — DANZ Monitoring FabricCWE-732 7.8 High2025-10-29
CVE-2025-6978 Diagnostics command injection vulnerability — Arista Edge Threat Management - Arista Next Generation FirewallCWE-78 7.2 High2025-10-23
CVE-2025-6979 Captive Portal can allow authentication bypass — Arista Edge Threat Management - Arista Next Generation FirewallCWE-287 8.8 High2025-10-23
CVE-2025-6980 Captive Portal can expose sensitive information — Arista Edge Threat Management - Arista Next Generation FirewallCWE-200 7.5 High2025-10-23
CVE-2025-6188 On affected platforms running Arista EOS, maliciously formed UDP packets with source port 3503 may be accepted by EOS. UDP Port 3503 is associated with LspPing Echo Reply. This can result in unexpected behaviors, especially for UDP based services that do n — EOS 7.5 High2025-08-25
CVE-2025-3456 On affected platforms running Arista EOS, the global common encryption key configuration may be logged in clear text, in local or remote accounting logs. Knowledge of both the encryption key and protocol specific encrypted secrets from the device running-c — EOSCWE-532 3.8 Low2025-08-25
CVE-2025-2826 n affected platforms running Arista EOS, ACL policies may not be enforced. IPv4 ingress ACL, MAC ingress ACL, or IPv6 standard ingress ACL enabled on one or more ethernet or LAG interfaces may result in ACL policies not being enforced for ingress packets. — EOSCWE-1284 2.6 Low2025-05-27

This page lists every published CVE security advisory associated with Arista Networks. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.