Vulnerabilities > CVE-2023-3646 - Out-of-bounds Read vulnerability in Arista EOS

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

network

low complexity

arista

CWE-125

NVD

Published: 2023-08-29

Updated: 2023-09-05

Summary

On affected platforms running Arista EOS with mirroring to multiple destinations configured, an internal system error may trigger a kernel panic and cause system reload.

Vulnerable Configurations

Part	Description	Count
OS	Arista Arista EOS 4.28.2F Arista EOS 4.28.3M Arista EOS 4.28.4M Arista EOS 4.28.5.1M Arista EOS 4.29.0 Arista EOS 4.29.1F	6
Hardware	Arista Arista 7280Cr3 32D4 - Arista 7280Cr3 32P4 - Arista 7280Cr3 36S - Arista 7280Cr3 96 - Arista 7280Cr3A 24D12 - Arista 7280Cr3A 48D6 - Arista 7280Cr3A 72 - Arista 7280Dr3 24 - Arista 7280Dr3A 36 - Arista 7280Dr3A 54 - Arista 7280Dr3Ak 36 - Arista 7280Dr3Ak 54 - Arista 7280Dr3Am 36 - Arista 7280Dr3Am 54 - Arista 7280Pr3 24 - Arista 7280R3 - Arista 7280Sr3 40Yc6 - Arista 7280Sr3 48Yc8 - Arista 7280Tr3 40C6 - Arista 7289R3A SC - Arista 7289R3Ak SC - Arista 7289R3Am SC - Arista 7500R3 24D - Arista 7500R3 24P - Arista 7500R3 36Cq - Arista 7500R3K 36Cq - Arista 7500R3K 48Y4D - Arista 7504R3 - Arista 7508R3 - Arista 7512R3 - Arista 7800R3 36D - Arista 7800R3 36P - Arista 7800R3 48Cq - Arista 7800R3A 36D - Arista 7800R3A 36Dm - Arista 7800R3A 36P - Arista 7800R3A 36Pm - Arista 7800R3Ak 36Dm - Arista 7800R3Ak 36Pm - Arista 7800R3K 36Dm - Arista 7800R3K 48Cq - Arista 7800R3K 48Cqms - Arista 7800R3K 72Y7512R3 - Arista 7808R3 - Arista 7812R3 - Arista 7816R3 -	46

Common Weakness Enumeration (CWE)

CWE-125 - Out-of-bounds Read

Common Attack Pattern Enumeration and Classification (CAPEC)

Overread Buffers
An adversary attacks a target by providing input that causes an application to read beyond the boundary of a defined buffer. This typically occurs when a value influencing where to start or stop reading is set to reflect positions outside of the valid memory location of the buffer. This type of attack may result in exposure of sensitive information, a system crash, or arbitrary code execution.

References

https://www.arista.com/en/support/advisories-notices/security-advisory/18042-security-advisory-0088