vulnerability

security-advisory-0108

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:N/AC:L/Au:N/C:N/I:N/A:P)	Nov 26, 2024	Nov 27, 2024	Apr 29, 2025

Severity

CVSS

(AV:N/AC:L/Au:N/C:N/I:N/A:P)

Published

Nov 26, 2024

Added

Nov 27, 2024

Modified

Apr 29, 2025

Description

On affected platforms running Arista EOS with one of the following features configured to redirect IP traffic to a next hop: policy-based routing (PBR), BGP Flowspec, or interface traffic policy -- certain IP traffic such as IPv4 packets with IP options may bypass the feature's set nexthop action and be slow-path forwarded (FIB routed) by the kernel as the packets are trapped to the CPU instead of following the redirect action's destination.

Solution

upgrade-solution-CVE-2024-6437

References

CVE-2024-6437
https://attackerkb.com/topics/CVE-2024-6437
URL-https://www.arista.com//en/support/advisories-notices/security-advisory/20689-security-advisory-0108

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today