← Back
CVE-2025-6978
raw json
nvd nist
Published: Oct 23, 2025
Modified: Oct 27, 2025
Bookmark
JSON object
Copy
×
Loading...
CVSS v3
7.2 HIGH
7.2
Vector
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Exploitability:
1.2
/
Impact:
5.9
Source: psirt@arista.com (Secondary)
Description
Diagnostics command injection vulnerability
Related CWEs
CWE-78
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component.
References (1)
https://https://www.arista.com/en/support/advisories-notices/security-advisory/22535-security-advisory-0123
Source: psirt@arista.com
Timeline
No history available yet.
Load History