CVE-2023-3646

Summary

On affected platforms running Arista EOS with mirroring to multiple destinations configured, an internal system error may trigger a kernel panic and cause system reload.

Affected Software

VendorProductVersion RangeStatus
Arista NetworksEOS4.28.2F <= 4.28.5.1Maffected
Arista NetworksEOS4.29.0 <= 4.29.1Faffected

Weaknesses

  • CWE-125: CWE-125 Out-of-bounds Read

Workarounds

The suggestion to prevent this issue is to remove any mirroring config

#show monitor session

No sessions created

This example confirms that the system does not have any mirroring config present which will prevent this issue from occurring.

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References