Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2021-28498

Опубликовано: 09 сент. 2021
Источник: nvd
CVSS3: 8.7
CVSS3: 7.8
CVSS2: 7.2
EPSS Низкий

Описание

In Arista's MOS (Metamako Operating System) software which is supported on the 7130 product line, user enable passwords set in clear text could result in unprivileged users getting complete access to the systems. This issue affects: Arista Metamako Operating System MOS-0.13 and post releases in the MOS-0.1x train MOS-0.26.6 and prior releases in the MOS-0.2x train MOS-0.31.1 and prior releases in the MOS-0.3x train

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одновременно

Одно из

cpe:2.3:o:arista:metamako_operating_system:*:*:*:*:*:*:*:*
Версия от 0.10.0 (включая) до 0.13.0 (включая)
cpe:2.3:o:arista:metamako_operating_system:*:*:*:*:*:*:*:*
Версия от 0.26.0 (включая) до 0.26.7 (исключая)
cpe:2.3:o:arista:metamako_operating_system:*:*:*:*:*:*:*:*
Версия от 0.31.0 (включая) до 0.32.0 (исключая)
cpe:2.3:h:arista:7130:-:*:*:*:*:*:*:*

EPSS

Процентиль: 26%
0.0009
Низкий

8.7 High

CVSS3

7.8 High

CVSS3

7.2 High

CVSS2

Дефекты

CWE-255
CWE-522

Связанные уязвимости

github логотип

GHSA-rp5c-jhh9-9f2j

CVSS3: 7.8
github
больше 3 лет назад

In Arista's MOS (Metamako Operating System) software which is supported on the 7130 product line, user enable passwords set in clear text could result in unprivileged users getting complete access to the systems. This issue affects: Arista Metamako Operating System MOS-0.13 and post releases in the MOS-0.1x train MOS-0.26.6 and prior releases in the MOS-0.2x train MOS-0.31.1 and prior releases in the MOS-0.3x train

EPSS

Процентиль: 26%
0.0009
Низкий

8.7 High

CVSS3

7.8 High

CVSS3

7.2 High

CVSS2

Дефекты

CWE-255
CWE-522