CVE-2021-28500
9.1CRITICALAn issue has recently been discovered in Arista EOS where the incorrect use of EOS's AAA API’s by the OpenConfig and TerminAttr agents could result in unrestricted access to the device for local users
게시됨: 1/14/2022업데이트됨: 11/21/2024
설명
An issue has recently been discovered in Arista EOS where the incorrect use of EOS's AAA API’s by the OpenConfig and TerminAttr agents could result in unrestricted access to the device for local users with nopassword configuration.
AI 분석AI 기반
영향받는 제품
aristaeos
aristaeos
aristaeos
aristaeos
aristaeos
aristaeos
aristaeos
참조
- https://www.arista.com/en/support/advisories-notices/security-advisories/13449-security-advisory-0071ExploitMitigationPatchVendor Advisory
- https://www.arista.com/en/support/advisories-notices/security-advisories/13449-security-advisory-0071ExploitMitigationPatchVendor Advisory