exploitDog

CVE-2024-11186

Опубликовано: 08 мая 2025

Источник: nvd

CVSS3: 10

EPSS Низкий

Описание

On affected versions of the CloudVision Portal, improper access controls could enable a malicious authenticated user to take broader actions on managed EOS devices than intended. This advisory impacts the Arista CloudVision Portal products when run on-premise. It does not impact CloudVision as-a-Service.

Ссылки

https://www.arista.com/en/support/advisories-notices/security-advisory/21314-security-advisory-0114

EPSS

Процентиль: 25%

0.00088

Низкий

10 Critical

CVSS3

Дефекты

CWE-287

Связанные уязвимости

GHSA-mf9v-44vc-62r3

CVSS3: 10

github

9 месяцев назад

On affected versions of the CloudVision Portal, improper access controls could enable a malicious authenticated user to take broader actions on managed EOS devices than intended. This advisory impacts the Arista CloudVision Portal products when run on-premise. It does not impact CloudVision as-a-Service.

EPSS

Процентиль: 25%

0.00088

Низкий

10 Critical

CVSS3

Дефекты

CWE-287