Primary

Context

Arista NG Firewall Authentication Token Retrieval Vulnerability

Vulnerability

Patched

A vulnerability exists in Arista Edge Threat Management - Arista NG Firewall, affecting versions through 17.1.1. A user with administrator privileges can retrieve authentication tokens, potentially leading to unauthorized access or actions within the application.

Impact

Exploitation of this vulnerability allows for the unauthorized retrieval of authentication tokens, which could be used to gain elevated privileges or access sensitive information.

Remediation

Users are advised to upgrade to version 17.2.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.3

impact

2.5

exploitability

4.4

remediation

7.9

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.3

impact

2.5

exploitability

4.4

remediation

7.9

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Arista NG Firewall Authentication Token Retrieval Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Arista Edge Threat Management

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating