4.22.8.1f

DATE	CVE	VULNERABILITY TITLE	RISK
2023-08-29	CVE-2023-24548	Classic Buffer Overflow vulnerability in Arista EOS On affected platforms running Arista EOS with VXLAN configured, malformed or truncated packets received over a VXLAN tunnel and forwarded in hardware can cause egress ports to be unable to forward packets. low complexity arista CWE-120	6.5
2023-06-05	CVE-2023-24510	Improper Handling of Exceptional Conditions vulnerability in Arista EOS On the affected platforms running EOS, a malformed DHCP packet might cause the DHCP relay agent to restart. network low complexity arista CWE-755	7.5
2023-01-26	CVE-2021-28510	Improper Validation of Specified Quantity in Input vulnerability in Arista EOS For certain systems running EOS, a Precision Time Protocol (PTP) packet of a management/signaling message with an invalid Type-Length-Value (TLV) causes the PTP agent to restart. network low complexity arista CWE-1284	7.5
2022-08-05	CVE-2021-28511	Unspecified vulnerability in Arista EOS This advisory documents the impact of an internally found vulnerability in Arista EOS for security ACL bypass. network low complexity arista	6.5
2022-02-04	CVE-2021-28503	Improper Authentication vulnerability in Arista EOS The impact of this vulnerability is that Arista's EOS eAPI may skip re-evaluating user credentials when certificate based authentication is used, which allows remote attackers to access the device via eAPI. network low complexity arista CWE-287 critical	9.8
2022-01-14	CVE-2021-28500	Unspecified vulnerability in Arista EOS An issue has recently been discovered in Arista EOS where the incorrect use of EOS's AAA API’s by the OpenConfig and TerminAttr agents could result in unrestricted access to the device for local users with nopassword configuration. local low complexity arista	7.8
2021-01-20	CVE-2020-25686	A flaw was found in dnsmasq before version 2.83. network high complexity thekelleys fedoraproject debian arista	3.7
2021-01-20	CVE-2020-25685	Inadequate Encryption Strength vulnerability in multiple products A flaw was found in dnsmasq before version 2.83. network high complexity thekelleys fedoraproject debian arista CWE-326	3.7
2021-01-20	CVE-2020-25684	A flaw was found in dnsmasq before version 2.83. network high complexity thekelleys fedoraproject debian arista	3.7
2019-10-24	CVE-2019-17596	Interpretation Conflict vulnerability in multiple products Go before 1.12.11 and 1.3.x before 1.13.2 can panic upon an attempt to process network traffic containing an invalid DSA public key. network low complexity golang debian fedoraproject redhat opensuse arista CWE-436	7.5