CVE-2023-24548

Published: Aug 29, 2023Modified: Nov 21, 2024

6.5

Vector

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Exploitability: 2.8 / Impact: 3.6

Source: NVD

Description

On affected platforms running Arista EOS with VXLAN configured, malformed or truncated packets received over a VXLAN tunnel and forwarded in hardware can cause egress ports to be unable to forward packets. The device will continue to be susceptible to the issue until remediation is in place.

Affected (4)

Products: Arista: Eos

Arista

1 product

Eos

Configuration A

4 vulnerable · 43 platform

Vulnerable Software	Affected Versions
Arista Eos	From 4.22.1f to 4.22.13m
Arista Eos	From 4.23.0 to 4.23.14m
Arista Eos	From 4.24.0 to 4.24.11m
Arista Eos	Version 4.25.0f

Running on/with	Platform Versions
Arista 7280cr3 32d4	All versions
Arista 7280cr3 32p4	All versions
Arista 7280cr3 36s	All versions
Arista 7280cr3 96	All versions
Arista 7280cr3a 24d12	All versions
Arista 7280cr3a 48d6	All versions
Arista 7280cr3a 72	All versions
Arista 7280dr3 24	All versions
Arista 7280dr3a 36	All versions
Arista 7280dr3a 54	All versions
Arista 7280dr3ak 36	All versions
Arista 7280dr3ak 54	All versions
Arista 7280dr3am 36	All versions
Arista 7280dr3am 54	All versions
Arista 7280pr3 24	All versions
Arista 7280r3	All versions
Arista 7280sr3 40yc6	All versions
Arista 7280sr3 48yc8	All versions
Arista 7280tr3 40c6	All versions
Arista 7500r3 24d	All versions
Arista 7500r3 24p	All versions
Arista 7500r3 36cq	All versions
Arista 7500r3k 36cq	All versions
Arista 7500r3k 48y4d	All versions
Arista 7504r3	All versions
Arista 7508r3	All versions
Arista 7512r3	All versions
Arista 7800r3 36d	All versions
Arista 7800r3 36p	All versions
Arista 7800r3 48cq	All versions
Arista 7800r3a 36d	All versions
Arista 7800r3a 36dm	All versions
Arista 7800r3a 36p	All versions
Arista 7800r3a 36pm	All versions
Arista 7800r3ak 36dm	All versions
Arista 7800r3ak 36pm	All versions
Arista 7800r3k 36dm	All versions
Arista 7800r3k 48cq	All versions
Arista 7800r3k 48cqms	All versions
Arista 7800r3k 72y7512r3	All versions
Arista 7808r3	All versions
Arista 7812r3	All versions
Arista 7816r3	All versions

Related CWEs

CWE-120

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.

References (2)

https://www.arista.com/en/support/advisories-notices/security-advisory/18043-security-advisory-0089

Source: psirt@arista.com

ExploitVendor Advisory

https://www.arista.com/en/support/advisories-notices/security-advisory/18043-security-advisory-0089

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitVendor Advisory

Timeline

No history available yet.