vulnerability

Security Advisory 0037

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
8	(AV:N/AC:L/Au:N/C:N/I:N/A:C)	Aug 14, 2018	Sep 4, 2024	Dec 17, 2024

Severity

CVSS

(AV:N/AC:L/Au:N/C:N/I:N/A:C)

Published

Aug 14, 2018

Added

Sep 4, 2024

Modified

Dec 17, 2024

Description

This advisory addresses a denial of service vulnerability (CVE-2018-5391) in the Linux kernel where crafted IP fragment ordering or overlap can allow an attacker to consume excessive memory. Affected products include Arista EOS, vEOS, CloudVision Portal, and CloudVision Appliance running specific versions.

Solution

upgrade-solution-CVE-2018-5391

References

CVE-2018-5391
https://attackerkb.com/topics/CVE-2018-5391
URL-https://www.arista.com//en/support/advisories-notices/security-advisory/5782-security-advisory-37

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today