CVE-2023-24548
5.3
CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
Summary
On affected platforms running Arista EOS with VXLAN configured, malformed or truncated packets received over a VXLAN tunnel and forwarded in hardware can cause egress ports to be unable to forward packets. The device will continue to be susceptible to the issue until remediation is in place.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Arista Networks | EOS | 4.25.0F <= =4.25.0F | affected |
| Arista Networks | EOS | 4.24.0 <= <=4.24.11M | affected |
| Arista Networks | EOS | 4.23.0 <= <=4.23.14M | affected |
| Arista Networks | EOS | 4.22.1F <= <=4.22.13M | affected |
Weaknesses
- CWE-120: CWE-120 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
Workarounds
There is no known mitigation for the issue. The recommended resolution is to upgrade to a remediated software version at your earliest convenience.
ADP Enrichment
CVE Program Container
Additional References
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.