Security Advisory

CVE-2021-28501

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-01-14 19:04:48

Last updated 2024-09-17 03:43:50

Assigner Arista

State PUBLISHED

Description

An issue has recently been discovered in Arista EOS where the incorrect use of EOSs AAA API’s by the OpenConfig and TerminAttr agents could result in unrestricted access to the device for local users with nopassword configuration.

← Browse all CVEs View on cve.org ↗