An issue has recently been discovered in Arista EOS where, under certain conditions, the service ACL configured for OpenConfig gNOI and OpenConfig RESTCONF might be bypassed, which results in the denied requests being forwarded to the agent.
References
Link | Resource |
---|---|
https://www.arista.com/en/support/advisories-notices/security-advisories/13449-security-advisory-0071 | Exploit Mitigation Patch Vendor Advisory |
Configurations
Configuration 1 (hide)
|
Information
Published : 2022-01-14 12:15
Updated : 2022-07-14 11:47
NVD link : CVE-2021-28507
Mitre link : CVE-2021-28507
JSON object : View
CWE
Products Affected
arista
- eos