Security Advisory

CVE-2021-28503

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-02-04 22:29:27

Last updated 2024-09-16 23:06:02

Assigner Arista

State PUBLISHED

Description

The impact of this vulnerability is that Aristas EOS eAPI may skip re-evaluating user credentials when certificate based authentication is used, which allows remote attackers to access the device via eAPI.

← Browse all CVEs View on cve.org ↗