Skip to content

RadicalNotion.AI

We do not sell or share your personal information

© 2026 RadicalNotion.AI

Security Data

CWE Directory
CAPEC Directory
CNA Directory
CNA Report Cards
Data Sources

Calculators

CVSS Calculator
CVSS 4.0
CVSS 3.1
CVSS 3.0
CVSS 2.0

Platform

My Vulnerabilities
Insights
Notifications
Account
Pricing

Learn

All guides
What is a CVE?
What is CVSS?
The CISA KEV catalog
What is EPSS?

Company

About us
Blog
Book a demo

Get Started

Sign up
Log in

Legal

Privacy
Terms

Security data

Weaknesses (CWE)The MITRE CWE weakness catalog
Attack Patterns (CAPEC)MITRE CAPEC attack patterns
CNAsNumbering authorities + report cards
VendorsVulnerabilities by vendor

Tools

CVSS CalculatorScore CVSS 4.0, 3.1, 3.0 & 2.0

Resources

LearnPlain-English security guides
Data SourcesHow we source CVE data

About Us Blog Pricing Book a Demo

Log in

Home
Vendors
Arista Networks
Eos

Arista Networks EOS Vulnerabilities: CVEs, CISA KEV & Security Advisories

Arista Networks

35 CVEs

Arista Networks EOS Vulnerabilities

CVE security advisories and vulnerability history for EOS by Arista Networks.

35

Total CVEs

Published

0

In CISA KEV

Exploited in the wild

4

Public exploits

With known exploit

6.6

Avg CVSS

2022–2026

Last updated June 5, 2026

Overview

Arista Networks EOS has 35 published CVE records since 2022, of which 0 are in CISA's Known Exploited Vulnerabilities catalog and 4 have a known public exploit. The average CVSS base score across scored CVEs is 6.6.

This page aggregates every publicly disclosed vulnerability (CVE) affecting Arista Networks EOS, with a severity breakdown, the affected and patched versions, the most common weakness types, and the full CVE list. Affected platforms include 7010 Series, 7010X Series, 7020R Series, 7020SRG Series, 7050X/X2/X3/X4 Series, 7050X3/X4.

Severity and exploitation

How the CVSS severity of Arista Networks EOS's CVEs breaks down, plus how many are exploited in the wild or have public exploit code.

Critical4

High10

Medium19

Low2

In CISA’s Known Exploited Vulnerabilities catalog

0

None of Arista Networks EOS's CVEs are currently listed in CISA's KEV catalog.

Public exploits

4

4 of Arista Networks EOS's CVEs have a known public exploit available.

Affected versions and CVEs

Browse every Arista Networks EOS version named in a CVE, then pick one to see only the CVEs that affect it.

Specific versions

4.28.02 CVEs
4.22.01 CVE
4.23.01 CVE
4.24.01 CVE
4.24.0 4.24.11M1 CVE
4.25.01 CVE
4.25.0 4.25.10M1 CVE
4.26.01 CVE
4.26.0 4.26.9M1 CVE
4.27.01 CVE
4.27.0 4.27.8.1M1 CVE
4.28.0 4.28.5.1M1 CVE
4.29.01 CVE
4.33.01 CVE

Fixed in

> 4.26.05 CVEs
> 4.29.1F4 CVEs
> 4.29.7M4 CVEs
> 4.24.11M3 CVEs
> 4.25.03 CVEs
> 4.26.9M3 CVEs
> 4.27.03 CVEs
> 4.27.8M3 CVEs
> 4.31.53 CVEs
> 4.31.5M3 CVEs
> 4.32.3M3 CVEs
> 4.32.7M3 CVEs
> 4.33.13 CVEs
> 4.23.02 CVEs

Default status

All versions1 CVE

Find a version

35 CVEs

Sort

Arista EOS IPsec Tunnel Sequence Number Mismatch via Interface Flaps when Anti-Replay is Disabled
CVE-2026-2379
Patch
Workaround
CWE-672
High · CVSS 8.2
2026-06-05
Arista EOS Unexpected Tunnel Protocol Decapsulation and Forwarding Bypass
CVE-2026-7473
Patch
Workaround
CWE-1023
Medium · CVSS 6.9
2026-06-05
Arista EOS Dataplane Denial of Service via Malformed IPsec Packet
CVE-2025-8873
Patch
CWE-1286
High · CVSS 8.7
EPSS 0.0% (5th pct)2026-06-04
On affected platforms running Arista EOS with 802.1x authentication configured on the access/trunk ports, a malicious supplicant may bypass authentication.
CVE-2023-5502
Patch
Workaround
CWE-287
High · CVSS 8.2
EPSS 0.0% (9th pct)2026-06-04
On affected platforms running Arista EOS with OpenConfig configured, a gNMI Set request can be run when it should have been rejected (SSL Profiles Enabled).
CVE-2024-27892
Patch
Workaround
CWE-306
Critical · CVSS 9.6
EPSS 0.1% (35th pct)2026-06-04
On affected platforms running Arista EOS with OpenConfig configured, a gNMI Set request can be run when it should have been rejected (No SSL Profiles Enabled).
CVE-2024-27890
Patch
Workaround
CWE-306
Critical · CVSS 9.6
EPSS 0.3% (51th pct)2026-06-04
On affected platforms running Arista EOS with MACsec and egress ACLs configured on the same interfaces, the ACL policies may not be enforced for packets egressing on those ports.
CVE-2024-27891
Patch
Workaround
CWE-284
Medium · CVSS 6.9
EPSS 0.1% (31th pct)2026-06-04
In Arista’s EOS when in 802.1X mode, multi-auth unauthenticated hosts might be allowed access to a switch port if there exists an EAPOL capable device in the fallback VLAN.
CVE-2024-6858
Patch
Workaround
CWE-1287
Medium · CVSS 6.5
EPSS 0.2% (39th pct)2026-06-04
On affected platforms running Arista EOS with MACsec configuration, a specially crafted packet can cause the MACsec process to terminate unexpectedly. Continuous receipt of these packets with certain MACsec configurations can cause longer term disruption o
CVE-2025-7048
Patch
Workaround
CWE-805
Medium · CVSS 5.3
EPSS 0.0% (1th pct)2026-01-06
A specially crafted packet can cause the OSFPv3 process to have high CPU utilization which may result in the OSFPv3 process being restarted
CVE-2025-8872
Patch
CWE-400
High · CVSS 7.1
EPSS 0.0% (9th pct)2025-12-16
On affected platforms running Arista EOS, certain serial console input might result in an unexpected reload of the device.
CVE-2025-8870
Public exploit
Patch
Workaround
CWE-248
Medium · CVSS 5.6
EPSS 0.0% (1th pct)2025-11-14
On affected platforms running Arista EOS, maliciously formed UDP packets with source port 3503 may be accepted by EOS. UDP Port 3503 is associated with LspPing Echo Reply. This can result in unexpected behaviors, especially for UDP based services that do n
CVE-2025-6188
Patch
CWE-290
High · CVSS 7.5
EPSS 0.0% (15th pct)2025-08-25
On affected platforms running Arista EOS, the global common encryption key configuration may be logged in clear text, in local or remote accounting logs. Knowledge of both the encryption key and protocol specific encrypted secrets from the device running-c
CVE-2025-3456
Patch
Workaround
CWE-532
Low · CVSS 3.8
EPSS 0.0% (6th pct)2025-08-25
n affected platforms running Arista EOS, ACL policies may not be enforced. IPv4 ingress ACL, MAC ingress ACL, or IPv6 standard ingress ACL enabled on one or more ethernet or LAG interfaces may result in ACL policies not being enforced for ingress packets.
CVE-2025-2826
Patch
CWE-1284
Low · CVSS 2.6
EPSS 0.1% (21th pct)2025-05-27
On affected platforms with hardware IPSec support running Arista EOS with IPsec enabled and anti-replay protection configured, EOS may exhibit unexpected behavior in specific cases. Received duplicate encrypted packets, which should be dropped under normal
CVE-2025-2796
Patch
Workaround
Medium · CVSS 5.3
EPSS 0.1% (35th pct)2025-05-27
Medium vulnerability · 2025-05-27
CVE-2024-11185
Patch
Medium · CVSS 6.5
EPSS 0.3% (50th pct)2025-05-27
On affected platforms running Arista EOS with Traffic Policies configured the vulnerability will cause received untagged packets not to hit Traffic Policy rules that they are expected to hit. If the rule was to drop the packet, the packet will not be dropp
CVE-2024-9448
Patch
CWE-1284
High · CVSS 7.5
EPSS 0.5% (66th pct)2025-05-08
On affected platforms running Arista EOS with a gNMI transport enabled, running the gNOI File TransferToRemote RPC with credentials for a remote server may cause these remote-server credentials to be logged or accounted on the local EOS device or possibly
CVE-2025-0936
Public exploit
Patch
Workaround
CWE-256
Medium · CVSS 6.5
EPSS 0.2% (38th pct)2025-05-07
Medium vulnerability · 2025-03-04
CVE-2024-8000
Patch
Workaround
CWE-1284
Medium · CVSS 5.3
EPSS 0.2% (48th pct)2025-03-04
On affected platforms running Arista EOS with BGP Link State configured, BGP peer flap can cause the BGP agent to leak memory. This may result in BGP routing processing being terminated and route flapping.
CVE-2024-9135
Patch
Workaround
CWE-401
Medium · CVSS 5.3
EPSS 0.2% (42th pct)2025-03-04
On affected platforms running Arista EOS with OpenConfig configured, a gNOI request can be run when it should have been rejected.
CVE-2025-1260
Patch
Workaround
CWE-284
Critical · CVSS 9.1
EPSS 0.1% (30th pct)2025-03-04
On affected platforms running Arista EOS with OpenConfig configured, a gNOI request can be run when it should have been rejected.
CVE-2025-1259
Patch
Workaround
CWE-284
High · CVSS 7.7
EPSS 0.3% (49th pct)2025-03-04
Medium vulnerability · 2025-01-10
CVE-2024-5872
Public exploit
Patch
Medium · CVSS 6.5
EPSS 0.1% (33th pct)2025-01-10
Medium vulnerability · 2025-01-10
CVE-2024-7095
Patch
Workaround
CWE-401
Medium · CVSS 4.3
EPSS 0.1% (35th pct)2025-01-10
Medium vulnerability · 2023-08-29
CVE-2023-3646
Patch
Workaround
CWE-125
Medium · CVSS 5.9
EPSS 0.2% (40th pct)2023-08-29
On affected platforms running Arista EOS with VXLAN configured, malformed or truncated packets received over a VXLAN tunnel and forwarded in hardware can cause egress ports to be unable to forward packets
CVE-2023-24548
Patch
Workaround
CWE-120
Medium · CVSS 5.3
EPSS 0.1% (19th pct)2023-08-29
High vulnerability · 2023-04-12
CVE-2023-24545
Patch
CWE-400
High · CVSS 7.5
EPSS 0.5% (64th pct)2023-04-12
Medium vulnerability · 2023-04-12
CVE-2023-24513
Patch
CWE-126
Medium · CVSS 6.5
EPSS 0.4% (63th pct)2023-04-12
Medium vulnerability · 2023-04-12
CVE-2023-24511
Patch
Workaround
CWE-401
Medium · CVSS 5.3
EPSS 0.2% (40th pct)2023-04-12
For certain systems running EOS, a Precision Time Protocol (PTP) packet of a management/signaling message with an invalid Type-Length-Value (TLV) causes the PTP agent to restart. Repeated restarts of the service will make the service unavailable.
CVE-2021-28510
Public exploit
Patch
Workaround
CWE-400
Medium · CVSS 5.3
EPSS 0.6% (69th pct)2023-01-24

Showing 30 of 35

Common weakness types

The CWE weakness categories most often found in Arista Networks EOS CVEs. Follow any weakness for its full explanation.

CWE-284Improper Access Control7 CVEs
CWE-401Missing Release of Memory after Effective Lifetime3 CVEs
CWE-400Uncontrolled Resource Consumption3 CVEs
CWE-1284Improper Validation of Specified Quantity in Input3 CVEs
CWE-306Missing Authentication for Critical Function2 CVEs
CWE-1287Improper Validation of Specified Type of Input1 CVE
CWE-1286Improper Validation of Syntactic Correctness of Input1 CVE
CWE-125Out-of-bounds Read1 CVE

Disclosure activity by year

How many Arista Networks EOS CVEs were published each year.

2022

5

2023

6

2025

15

2026

9

Other Arista Networks products

Browse vulnerabilities for other products by Arista Networks.

Arista Edge Threat Management9 CVEs Arista EOS7 CVEs Arista Edge Threat Management - Arista Next Generation Firewall (NGFW)5 CVEs DANZ Monitoring Fabric5 CVEs CloudVision Portal4 CVEs Arista Edge Threat Management - Arista Next Generation Firewall3 CVEs EOS / CloudVision eXchange (CVX)3 CVEs Arista TerminAttr2 CVEs

All Arista Networks vulnerabilities

Frequently asked questions

Common questions about Arista Networks EOS vulnerabilities.

How many CVEs does Arista Networks EOS have?

Arista Networks EOS has 35 published CVE records since 2022.

How many Arista Networks EOS CVEs are in CISA KEV?

None of Arista Networks EOS's CVEs are currently listed in CISA's Known Exploited Vulnerabilities catalog.

Are there public exploits for Arista Networks EOS vulnerabilities?

Yes — 4 of Arista Networks EOS's CVEs have a known public exploit.

Which versions of Arista Networks EOS are affected?

110 distinct Arista Networks EOS versions are named across its CVEs. Use the version filter above to see the CVEs affecting a specific version.

What are the most common weakness types in Arista Networks EOS CVEs?

Arista Networks EOS's CVEs most often map to these CWE weakness types: CWE-284 (Improper Access Control), CWE-401 (Missing Release of Memory after Effective Lifetime), CWE-400 (Uncontrolled Resource Consumption), CWE-1284 (Improper Validation of Specified Quantity in Input).

How many critical Arista Networks EOS vulnerabilities are there?

Arista Networks EOS has 4 critical and 10 high-severity CVEs.

What is the average severity of Arista Networks EOS CVEs?

The average CVSS base score across Arista Networks EOS's scored CVEs is 6.6.

References

All Arista Networks vulnerabilities
The MITRE CVE Program (opens in a new tab)
Learn: What is a CVE?
CWE directory: the weakness types these CVEs map to

Vulnerability data is sourced from the CVE Program; severity, KEV, and exploit signals are aggregated by RadicalNotion.AI.

Track Arista Networks EOS vulnerabilities

Monitor new Arista Networks EOS vulnerabilities as they are disclosed, with AI-written analysis and remediation guidance.

Start free See pricing

On this page

Overview
Severity and exploitation
Affected versions and CVEs
Common weakness types
Disclosure activity
Other products
FAQ
References

> 4.24.02 CVEs

> 4.25.10M2 CVEs

> 4.25.42 CVEs

> 4.25.52 CVEs

> 4.28.10.1M2 CVEs

> 4.28.10M2 CVEs

> 4.28.122 CVEs

> 4.29.10M2 CVEs

> 4.29.92 CVEs

> 4.30.10M2 CVEs

> 4.30.5M2 CVEs

> 4.30.7M2 CVEs

> 4.30.82 CVEs

> 4.30.8M2 CVEs

> 4.30.9M2 CVEs

> 4.31.2F2 CVEs

> 4.31.4M2 CVEs

> 4.31.6M2 CVEs

> 4.31.9M2 CVEs

> 4.32.2F2 CVEs

> 4.32.32 CVEs

> 4.33.1F2 CVEs

> 4.33.4M2 CVEs

> 4.33.5M2 CVEs

4.28.02 CVEs

4.30.02 CVEs

> <=4.22.13M1 CVE

> <=4.23.14M1 CVE

> <=4.24.11M1 CVE

> =4.25.0F1 CVE

> 4.21.x1 CVE

> 4.24.2F1 CVE

> 4.24.91 CVE

> 4.25.11M1 CVE

> 4.25.81 CVE

> 4.26.11M1 CVE

> 4.26.51 CVE

> 4.26.8M1 CVE

> 4.27.11 CVE

> 4.27.11M1 CVE

> 4.27.31 CVE

> 4.27.7M1 CVE

> 4.28.11F1 CVE

> 4.28.4M1 CVE

> 4.28.5.1M1 CVE

> 4.28.5M1 CVE

> 4.28.8M1 CVE

> 4.29.10.1M1 CVE

> 4.29.6M1 CVE

> 4.29.8M1 CVE

> 4.29.9.11 CVE

> 4.301 CVE

> 4.30.4M1 CVE

> 4.30.6M1 CVE

> 4.30.8.11 CVE

> 4.30.9.1M1 CVE

> 4.311 CVE

> 4.31.01 CVE

> 4.31.0F1 CVE

> 4.31.1F1 CVE

> 4.31.7.1M1 CVE

> 4.31.7M1 CVE

> 4.31.8M1 CVE

> 4.321 CVE

> 4.32.0.1F1 CVE

> 4.32.4.1M1 CVE

> 4.32.4M1 CVE

> 4.32.5M1 CVE

> 4.32.6.1M1 CVE

> 4.331 CVE

> 4.33.0F1 CVE

> 4.33.1.2F1 CVE

> 4.33.2F1 CVE

> 4.33.3F1 CVE

> 4.341 CVE

> 4.34.1F1 CVE

> 4.34.3.1M1 CVE

> 4.34.3M1 CVE

> 4.351 CVE

4.29.01 CVE

4.31.01 CVE