Security Advisory

CVE-2020-24333

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-09-22 14:50:02
Last updated 2024-08-04 15:12:09
Assigner mitre
State PUBLISHED

Description

A vulnerability in Arista’s CloudVision Portal (CVP) prior to 2020.2 allows users with “read-only” or greater access rights to the Configlet Management module to download files not intended for access, located on the CVP server, by accessing a specific API.