How severe is CVE-2021-28506?

CVE-2021-28506 has a CVSS v3 score of 9.1 (CRITICAL).

CVE-2021-28506

Name: eos
Author: arista

9.1CRITICAL

An issue has recently been discovered in Arista EOS where certain gNOI APIs incorrectly skip authorization and authentication which could potentially allow a factory reset of the device.

Veröffentlicht: 1/14/2022Aktualisiert: 11/21/2024

Beschreibung

An issue has recently been discovered in Arista EOS where certain gNOI APIs incorrectly skip authorization and authentication which could potentially allow a factory reset of the device.

KI-AnalyseKI-gestützt

Betroffene Produkte

aristaeos

Referenzen

https://www.arista.com/en/support/advisories-notices/security-advisories/13449-security-advisory-0071
ExploitMitigationPatchVendor Advisory
https://www.arista.com/en/support/advisories-notices/security-advisories/13449-security-advisory-0071
ExploitMitigationPatchVendor Advisory