Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2021-28496

On systems running Arista EOS and CloudEOS with the affected release version, when using shared secret profiles the password configured for use by BiDirectional Forwarding Detection (BFD) will be leaked when displaying output over eAPI or other JSON outputs to other authenticated users on the device. The affected EOS Versions are: all releases in 4.22.x train, 4.23.9 and below releases in the 4.23.x train, 4.24.7 and below releases in the 4.24.x train, 4.25.4 and below releases in the 4.25.x train, 4.26.1 and below releases in the 4.26.x train
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 25.9%
CVSS Severity
CVSS v3 Score 5.7
CVSS v2 Score 4.0
Products affected by CVE-2021-28496
  • Arista » Eos » Version: 4.22
    cpe:2.3:o:arista:eos:4.22
  • Arista » Eos » Version: 4.22.0f
    cpe:2.3:o:arista:eos:4.22.0f
  • Arista » Eos » Version: 4.22.1f
    cpe:2.3:o:arista:eos:4.22.1f
  • Arista » Eos » Version: 4.22.3m
    cpe:2.3:o:arista:eos:4.22.3m
  • Arista » Eos » Version: 4.22.4m
    cpe:2.3:o:arista:eos:4.22.4m
  • Arista » Eos » Version: 4.22.6m
    cpe:2.3:o:arista:eos:4.22.6m
  • Arista » Eos » Version: 4.22.7m
    cpe:2.3:o:arista:eos:4.22.7m
  • Arista » Eos » Version: 4.23
    cpe:2.3:o:arista:eos:4.23
  • Arista » Eos » Version: 4.23.0f
    cpe:2.3:o:arista:eos:4.23.0f
  • Arista » Eos » Version: 4.23.1f
    cpe:2.3:o:arista:eos:4.23.1f
  • Arista » Eos » Version: 4.23.2f
    cpe:2.3:o:arista:eos:4.23.2f
  • Arista » Eos » Version: 4.23.3m
    cpe:2.3:o:arista:eos:4.23.3m
  • Arista » Eos » Version: 4.23.4m
    cpe:2.3:o:arista:eos:4.23.4m
  • Arista » Eos » Version: 4.23.5m
    cpe:2.3:o:arista:eos:4.23.5m
  • Arista » Eos » Version: 4.23.6m
    cpe:2.3:o:arista:eos:4.23.6m
  • Arista » Eos » Version: 4.23.7m
    cpe:2.3:o:arista:eos:4.23.7m
  • Arista » Eos » Version: 4.23.9
    cpe:2.3:o:arista:eos:4.23.9
  • Arista » Eos » Version: 4.23.9m
    cpe:2.3:o:arista:eos:4.23.9m
  • Arista » Eos » Version: 4.24
    cpe:2.3:o:arista:eos:4.24
  • Arista » Eos » Version: 4.24.0
    cpe:2.3:o:arista:eos:4.24.0
  • Arista » Eos » Version: 4.24.0f
    cpe:2.3:o:arista:eos:4.24.0f
  • Arista » Eos » Version: 4.24.2.1f
    cpe:2.3:o:arista:eos:4.24.2.1f
  • Arista » Eos » Version: 4.24.2.4f
    cpe:2.3:o:arista:eos:4.24.2.4f
  • Arista » Eos » Version: 4.24.2f
    cpe:2.3:o:arista:eos:4.24.2f
  • Arista » Eos » Version: 4.24.3.1m
    cpe:2.3:o:arista:eos:4.24.3.1m
  • Arista » Eos » Version: 4.24.5m
    cpe:2.3:o:arista:eos:4.24.5m
  • Arista » Eos » Version: 4.24.7
    cpe:2.3:o:arista:eos:4.24.7
  • Arista » Eos » Version: 4.24.7m
    cpe:2.3:o:arista:eos:4.24.7m
  • Arista » Eos » Version: 4.25
    cpe:2.3:o:arista:eos:4.25
  • Arista » Eos » Version: 4.25.0
    cpe:2.3:o:arista:eos:4.25.0
  • Arista » Eos » Version: 4.25.0f
    cpe:2.3:o:arista:eos:4.25.0f
  • Arista » Eos » Version: 4.25.1f
    cpe:2.3:o:arista:eos:4.25.1f
  • Arista » Eos » Version: 4.25.2f
    cpe:2.3:o:arista:eos:4.25.2f
  • Arista » Eos » Version: 4.25.4
    cpe:2.3:o:arista:eos:4.25.4
  • Arista » Eos » Version: 4.26
    cpe:2.3:o:arista:eos:4.26
  • Arista » Eos » Version: 4.26.0
    cpe:2.3:o:arista:eos:4.26.0
  • Arista » Eos » Version: 4.26.1
    cpe:2.3:o:arista:eos:4.26.1
  • Arista » Eos » Version: 4.26.1f
    cpe:2.3:o:arista:eos:4.26.1f


Products
Pricing
Contact Us

Shodan ® - All rights reserved