Описание
On affected platforms running Arista MOS, the configuration of a BGP password will cause the password to be logged in clear text that can be revealed in local logs or remote logging servers by authenticated users, as well as appear in clear text in the device’s running config.
Уязвимые конфигурации
Конфигурация 1Версия от 0.13.0 (включая) до 0.39.4 (включая)
Одновременно
cpe:2.3:o:arista:mos:*:*:*:*:*:*:*:*
Одно из
cpe:2.3:h:arista:7130:-:*:*:*:*:*:*:*
cpe:2.3:h:arista:7130-16g3s:-:*:*:*:*:*:*:*
cpe:2.3:h:arista:7130-48g3s:-:*:*:*:*:*:*:*
cpe:2.3:h:arista:7130-96s:-:*:*:*:*:*:*:*
EPSS
Процентиль: 4%
0.00019
Низкий
5.9 Medium
CVSS3
6.5 Medium
CVSS3
Дефекты
CWE-319
Связанные уязвимости
CVSS3: 5.9
github
около 2 лет назад
On affected platforms running Arista MOS, the configuration of a BGP password will cause the password to be logged in clear text that can be revealed in local logs or remote logging servers by authenticated users, as well as appear in clear text in the device’s running config.
EPSS
Процентиль: 4%
0.00019
Низкий
5.9 Medium
CVSS3
6.5 Medium
CVSS3
Дефекты
CWE-319