Arista CVEs & Vulnerabilities

6 CVEs affecting Arista products, tracked from the National Vulnerability Database, with CVSS/EPSS scores and exploitation status.

Most Affected Products

ng firewall 57280pr3-24 17280qra-c36s 17804r3 17289r3a-sc 17280sra-48c6-m 17280dr3a-36 17500r2a-36cq-lc 1
CVE-2026-25624MEDIUM

An administrative cross-site scripting (XSS) vulnerability exists in the web user interface dashboard layout of Arista Edge Threat Management - Arista Next Generation Firewall (NGFW). Unvalidated user-supplied variables are echoed back to administrative profiles, facilitating vector payload processing behavior controls.

5 Jun 2026
4.8
CVSS
CVE-2026-25623MEDIUM

An input validation command execution vulnerability exists in the browser management pipeline of Arista Edge Threat Management - Arista Next Generation Firewall (NGFW). Authenticated administrators can leverage this exposure to obtain underlying terminal script code processing execution permissions.

5 Jun 2026
6.0
CVSS
CVE-2026-25622MEDIUM

A Captive Portal Custom Handler command injection vulnerability exists in Arista Edge Threat Management - Arista Next Generation Firewall (NGFW). On affected platforms, an administrative account logged into the user interface can exploit this input handling behavior to execute arbitrary platform shell commands.

5 Jun 2026
6.0
CVSS
CVE-2026-25621MEDIUM

A Reports application infrastructure vulnerability exists in Arista Edge Threat Management - Arista Next Generation Firewall (NGFW) due to insecure input validation. This issue uniquely affects version 17.4.0; earlier software releases are not exposed.

5 Jun 2026
6.0
CVSS
CVE-2026-25620MEDIUM

An encrypted password command injection vulnerability exists in the Captive Portal application framework of Arista Edge Threat Management - Arista Next Generation Firewall (NGFW). This issue uniquely affects version 17.4.0; earlier software releases are not exposed.

5 Jun 2026
6.0
CVSS
CVE-2026-7473KEVMEDIUMin the wild

On affected platforms running Arista EOS where a tunnel decapsulation configuration—such as VXLAN (Virtual Extensible LAN), decap-groups, or a GRE (Generic Routing Encapsulation) tunnel interface—is present, the switch will incorrectly decapsulate and forward other unexpected tunneled packet with a destination IP matching its configured decapsulation IP. This occurs because the switch does not verify the tunnel protocol type, potentially leading to the unexpected processing of non-configured tunnel traffic. This issue has been reported as being exploited in the wild.

5 Jun 2026
5.8
CVSS
← PrevPage 1 / 1Next →