CVE-2021-28506
9.1CRITICALAn issue has recently been discovered in Arista EOS where certain gNOI APIs incorrectly skip authorization and authentication which could potentially allow a factory reset of the device.
Published: 1/14/2022Updated: 11/21/2024
Description
An issue has recently been discovered in Arista EOS where certain gNOI APIs incorrectly skip authorization and authentication which could potentially allow a factory reset of the device.
AI AnalysisPowered by AI
Affected Products
aristaeos
aristaeos
aristaeos
aristaeos
aristaeos
References
- https://www.arista.com/en/support/advisories-notices/security-advisories/13449-security-advisory-0071ExploitMitigationPatchVendor Advisory
- https://www.arista.com/en/support/advisories-notices/security-advisories/13449-security-advisory-0071ExploitMitigationPatchVendor Advisory