- How many CVEs does Arista Networks have?
- Arista Networks has 142 published CVE records since 2014, including 57 in the last two years.
- How many Arista Networks CVEs are in CISA KEV?
- Yes — 4 of Arista Networks's CVEs are listed in CISA's Known Exploited Vulnerabilities catalog, confirmed exploited in the wild and carrying a CISA remediation deadline.
- Which Arista Networks products have the most CVEs?
- The Arista Networks products with the most published CVEs are EOS, NG Firewall, CloudVision Portal, 7500r3-36cq, 7500r3-24p.
- What are the most common weakness types in Arista Networks CVEs?
- Arista Networks's CVEs most often map to these CWE weakness types: CWE-284 (Improper Access Control), CWE-78 (Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')), CWE-287 (Improper Authentication), CWE-255.
- Are there public exploits for Arista Networks vulnerabilities?
- Yes — 16 of Arista Networks's CVEs have a known public exploit.
- How many critical Arista Networks vulnerabilities are there?
- Arista Networks has 22 critical and 66 high-severity CVEs.
- What is the average severity of Arista Networks CVEs?
- The average CVSS base score across Arista Networks's scored CVEs is 7.2.