CVSS: 7.8EPSS: 0%CPEs: 81EXPL: 1CVE-2021-28510 – For certain systems running EOS, a Precision Time Protocol (PTP) packet of a management/signaling message with an invalid Type-Length-Value (TLV) causes the PTP agent to restart. Repeated restarts of the service will make the service unavailable.
https://notcve.org/view.php?id=CVE-2021-28510
24 Jan 2023 — For certain systems running EOS, a Precision Time Protocol (PTP) packet of a management/signaling message with an invalid Type-Length-Value (TLV) causes the PTP agent to restart. Repeated restarts of the service will make the service unavailable. • https://www.arista.com/en/support/advisories-notices/security-advisory/15439-security-advisory-0076 • CWE-400: Uncontrolled Resource Consumption CWE-1284: Improper Validation of Specified Quantity in Input •
CVSS: 5.3EPSS: 0%CPEs: 53EXPL: 1CVE-2020-15898
https://notcve.org/view.php?id=CVE-2020-15898
28 Dec 2020 — In Arista EOS malformed packets can be incorrectly forwarded across VLAN boundaries in one direction. This vulnerability is only susceptible to exploitation by unidirectional traffic (ex. UDP) and not bidirectional traffic (ex. TCP). This affects: EOS 7170 platforms version 4.21.4.1F and below releases in the 4.21.x train; EOS X-Series versions 4.21.11M and below releases in the 4.21.x train; 4.22.6M and below releases in the 4.22.x train; 4.23.4M and below releases in the 4.23.x train; 4.24.2.1F and below ... • https://www.arista.com/en/support/advisories-notices/security-advisories/11996-security-advisory-56 •
CVSS: 5.9EPSS: 0%CPEs: 50EXPL: 1CVE-2020-26569
https://notcve.org/view.php?id=CVE-2020-26569
28 Dec 2020 — In EVPN VxLAN setups in Arista EOS, specific malformed packets can lead to incorrect MAC to IP bindings and as a result packets can be incorrectly forwarded across VLAN boundaries. This can result in traffic being discarded on the receiving VLAN. This affects versions: 4.21.12M and below releases in the 4.21.x train; 4.22.7M and below releases in the 4.22.x train; 4.23.5M and below releases in the 4.23.x train; 4.24.2F and below releases in the 4.24.x train. En unas configuraciones EVPN VxLAN en Arista EOS,... • https://www.arista.com/en/support/advisories-notices/security-advisories/11997-security-advisory-57 •