vulnerability

Arista: EOS: CVE-2025-6188: security-advisory-0121

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
8	(AV:N/AC:L/Au:N/C:N/I:C/A:N)	Jul 22, 2025	Jul 23, 2025	Jan 14, 2026

Severity

CVSS

(AV:N/AC:L/Au:N/C:N/I:C/A:N)

Published

Jul 22, 2025

Added

Jul 23, 2025

Modified

Jan 14, 2026

Description

On affected platforms running Arista EOS, maliciously formed UDP packets with source port 3503 may be accepted by EOS. UDP Port 3503 is associated with LspPing Echo Reply. This can result in unexpected behaviors, especially for UDP based services that do not perform some form of authentication.

Solution

upgrade-solution-cve-2025-6188

References

CVE-2025-6188
https://attackerkb.com/topics/CVE-2025-6188
URL-https://www.arista.com/en/support/advisories-notices/security-advisory/22021-security-advisory-0121
CWE-290

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today