CVE-2021-28503

The impact of this vulnerability is that Arista's EOS eAPI may skip re-evaluating user credentials when certificate based authentication is used, which allows remote attackers to access the device via eAPI.

Link	Resource
https://www.arista.com/en/support/advisories-notices/security-advisories/13605-security-advisory-0072	Mitigation Patch

Configuration 1

cpe:2.3:o:arista:eos:*:*:*:*:*:*:*:* cpe:2.3:o:arista:eos:*:*:*:*:*:*:*:* cpe:2.3:o:arista:eos:*:*:*:*:*:*:*:* cpe:2.3:o:arista:eos:*:*:*:*:*:*:*:* cpe:2.3:o:arista:eos:*:*:*:*:*:*:*:*

---

Published : 2022-02-04 11:15

Updated : 2022-08-02 03:57

---

NVD link : CVE-2021-28503

Mitre link : CVE-2021-28503

No products.

CWE-287