An issue with ARP packets in Arista’s EOS affecting the 7800R3, 7500R3, and 7280R3 series of products may result in issues that cause a kernel crash, followed by a device reload. The affected Arista EOS versions are: 4.24.2.4F and below releases in the 4.24.x train; 4.23.4M and below releases in the 4.23.x train; 4.22.6M and below releases in the 4.22.x train.
References
Link | Resource |
---|---|
https://www.arista.com/en/support/advisories-notices/security-advisories/11999-security-advisory-59 | Exploit Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
History
05 Jan 2021, 15:19
Type | Values Removed | Values Added |
---|---|---|
References | (CONFIRM) https://www.arista.com/en/support/advisories-notices/security-advisories/11999-security-advisory-59 - Exploit, Vendor Advisory | |
CVSS |
v2 : v3 : |
v2 : 6.1
v3 : 7.4 |
CWE | CWE-404 | |
CPE | cpe:2.3:h:arista:7280cr3k-32p4:-:*:*:*:*:*:*:* cpe:2.3:o:arista:eos:*:*:*:*:*:*:*:* cpe:2.3:h:arista:7280dr3k-24:-:*:*:*:*:*:*:* cpe:2.3:h:arista:7800r3-48cq:-:*:*:*:*:*:*:* cpe:2.3:h:arista:7280dr3-24:-:*:*:*:*:*:*:* cpe:2.3:h:arista:7280cr2ak-30:-:*:*:*:*:*:*:* cpe:2.3:h:arista:7808r3:-:*:*:*:*:*:*:* cpe:2.3:h:arista:7280cr3-32p4:-:*:*:*:*:*:*:* cpe:2.3:h:arista:7804r3:-:*:*:*:*:*:*:* cpe:2.3:h:arista:7280sr3-48yc8:-:*:*:*:*:*:*:* cpe:2.3:h:arista:7280pr3k-24:-:*:*:*:*:*:*:* cpe:2.3:h:arista:7280cr2k-60:-:*:*:*:*:*:*:* cpe:2.3:h:arista:7504r3:-:*:*:*:*:*:*:* cpe:2.3:h:arista:7280pr3-24:-:*:*:*:*:*:*:* cpe:2.3:h:arista:7280cr3k-32d4:-:*:*:*:*:*:*:* cpe:2.3:h:arista:7508r3:-:*:*:*:*:*:*:* cpe:2.3:h:arista:7280cr3-32d4:-:*:*:*:*:*:*:* cpe:2.3:h:arista:7800r3-36p:-:*:*:*:*:*:*:* cpe:2.3:h:arista:7280cr3-96:-:*:*:*:*:*:*:* cpe:2.3:h:arista:7280cr3k-96:-:*:*:*:*:*:*:* cpe:2.3:h:arista:7280sr3k-48yc8:-:*:*:*:*:*:*:* cpe:2.3:h:arista:7500r3k-36cq:-:*:*:*:*:*:*:* cpe:2.3:h:arista:7500r3-36cq:-:*:*:*:*:*:*:* cpe:2.3:h:arista:7500r3-24p:-:*:*:*:*:*:*:* cpe:2.3:h:arista:7512r3:-:*:*:*:*:*:*:* cpe:2.3:h:arista:7800r3k-48cq:-:*:*:*:*:*:*:* cpe:2.3:h:arista:7500r3-24d:-:*:*:*:*:*:*:* |
28 Dec 2020, 19:21
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2020-12-28 19:15
Updated : 2023-12-10 13:41
NVD link : CVE-2020-24360
Mitre link : CVE-2020-24360
CVE.ORG link : CVE-2020-24360
JSON object : View
Products Affected
arista
- 7280cr2ak-30
- 7280cr3k-32d4
- 7280dr3k-24
- 7504r3
- 7280cr2k-60
- 7800r3-36p
- eos
- 7800r3-48cq
- 7280dr3-24
- 7280pr3-24
- 7280cr3k-32p4
- 7800r3k-48cq
- 7280sr3-48yc8
- 7500r3k-36cq
- 7280pr3k-24
- 7500r3-36cq
- 7500r3-24p
- 7280cr3-32p4
- 7280cr3-32d4
- 7280cr3k-96
- 7280cr3-96
- 7508r3
- 7804r3
- 7808r3
- 7280sr3k-48yc8
- 7512r3
- 7500r3-24d
CWE
CWE-404
Improper Resource Shutdown or Release