Security Advisory

CVE-2025-0936

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-05-07 22:52:25
Last updated 2025-05-08 13:02:27
Assigner Arista
State PUBLISHED

Description

On affected platforms running Arista EOS with a gNMI transport enabled, running the gNOI File TransferToRemote RPC with credentials for a remote server may cause these remote-server credentials to be logged or accounted on the local EOS device or possibly on other remote accounting servers (i.e. TACACS, RADIUS, etc).