Vulnerabilities > Arista > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-05-11 | CVE-2020-26140 | Use of a Broken or Risky Cryptographic Algorithm vulnerability in multiple products An issue was discovered in the ALFA Windows 10 driver 6.1316.1209 for AWUS036H. | 6.5 |
| 2021-05-11 | CVE-2020-26143 | Improper Input Validation vulnerability in multiple products An issue was discovered in the ALFA Windows 10 driver 1030.36.604 for AWUS036ACH. | 6.5 |
| 2021-05-11 | CVE-2020-26144 | Improper Input Validation vulnerability in multiple products An issue was discovered on Samsung Galaxy S3 i9305 4.4.4 devices. | 6.5 |
| 2021-05-11 | CVE-2020-26146 | Improper Input Validation vulnerability in multiple products An issue was discovered on Samsung Galaxy S3 i9305 4.4.4 devices. | 5.3 |
| 2021-05-11 | CVE-2020-26147 | An issue was discovered in the Linux kernel 5.8.9. | 5.4 |
| 2020-12-28 | CVE-2020-15898 | Unspecified vulnerability in Arista EOS In Arista EOS malformed packets can be incorrectly forwarded across VLAN boundaries in one direction. | 5.3 |
| 2020-12-28 | CVE-2020-26569 | Unspecified vulnerability in Arista EOS In EVPN VxLAN setups in Arista EOS, specific malformed packets can lead to incorrect MAC to IP bindings and as a result packets can be incorrectly forwarded across VLAN boundaries. | 5.9 |
| 2020-09-22 | CVE-2020-24333 | Unspecified vulnerability in Arista Cloudvision Portal A vulnerability in Arista’s CloudVision Portal (CVP) prior to 2020.2 allows users with “read-only” or greater access rights to the Configlet Management module to download files not intended for access, located on the CVP server, by accessing a specific API. | 6.5 |
| 2020-09-08 | CVE-2020-3702 | Cleartext Transmission of Sensitive Information vulnerability in multiple products u'Specifically timed and handcrafted traffic can cause internal errors in a WLAN device that lead to improper layer 2 Wi-Fi encryption with a consequent possibility of information disclosure over the air for a discrete set of traffic' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8053, IPQ4019, IPQ8064, MSM8909W, MSM8996AU, QCA9531, QCN5502, QCS405, SDX20, SM6150, SM7150 | 6.5 |
| 2020-01-23 | CVE-2015-5745 | Classic Buffer Overflow vulnerability in multiple products Buffer overflow in the send_control_msg function in hw/char/virtio-serial-bus.c in QEMU before 2.4.0 allows guest users to cause a denial of service (QEMU process crash) via a crafted virtio control message. | 6.5 |