exploitDog

GHSA-wf49-mp4g-xcg4

Опубликовано: 04 мар. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 7.7

Описание

On affected platforms running Arista EOS with OpenConfig configured, a gNOI request can be run when it should have been rejected. This issue can result in users retrieving data that should not have been available

On affected platforms running Arista EOS with OpenConfig configured, a gNOI request can be run when it should have been rejected. This issue can result in users retrieving data that should not have been available

Ссылки

EPSS

Процентиль: 26%

0.00094

Низкий

7.7 High

CVSS3

CVE ID

Дефекты

CWE-284

Связанные уязвимости

CVE-2025-1259

CVSS3: 7.7

nvd

11 месяцев назад

On affected platforms running Arista EOS with OpenConfig configured, a gNOI request can be run when it should have been rejected. This issue can result in users retrieving data that should not have been available

BDU:2025-07177

CVSS3: 7.7

fstec

12 месяцев назад

Уязвимость команды OpenConfig.Set операционной системы Arista EOS, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации

EPSS

Процентиль: 26%

0.00094

Низкий

7.7 High

CVSS3

CVE ID

Дефекты

CWE-284