vulnerability
Security Advisory 0096
Severity | CVSS | Published | Added | Modified |
---|---|---|---|---|
7 | (AV:N/AC:M/Au:N/C:N/I:C/A:N) | 05/21/2024 | 09/04/2024 | 12/17/2024 |
Severity
7
CVSS
(AV:N/AC:M/Au:N/C:N/I:C/A:N)
Published
05/21/2024
Added
09/04/2024
Modified
12/17/2024
Description
On affected platforms running Arista EOS with 802.1x authentication configured on the access/trunk ports, and routing enabled on the access VLAN of the ports, a malicious supplicant may be able to bypass the requirement to perform 802.1x authentication. This issue was discovered internally and Arista is not aware of any malicious uses of this issue in customer networks.
Solution
upgrade-solution-CVE-2023-5502

NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.