Vulnerabilities > Arista > EOS > 4.28.6.1m

DATE CVE VULNERABILITY TITLE RISK
2023-06-05 CVE-2023-24510 Improper Handling of Exceptional Conditions vulnerability in Arista EOS
On the affected platforms running EOS, a malformed DHCP packet might cause the DHCP relay agent to restart.
network
low complexity
arista CWE-755
7.5
7.5
2023-04-25 CVE-2023-24512 Incorrect Authorization vulnerability in Arista products
On affected platforms running Arista EOS, an authorized attacker with permissions to perform gNMI requests could craft a request allowing it to update arbitrary configurations in the switch.
network
low complexity
arista CWE-863
6.5
6.5
2023-04-12 CVE-2023-24511 Memory Leak vulnerability in Arista EOS
On affected platforms running Arista EOS with SNMP configured, a specially crafted packet can cause a memory leak in the snmpd process.
network
low complexity
arista CWE-401
7.5
7.5