Volerion logoVolerion
Volerion logoVolerion

Arista EOS OSPFv3 High CPU Utilization Vulnerability Leading to Process Restart

Vulnerability

A vulnerability exists in Arista EOS platforms with OSPFv3 configured, where a specially crafted packet can cause high CPU utilization in the OSPFv3 process. This increased load may lead to the OSPFv3 process being restarted, causing disruptions in OSPFv3 routing on the affected switch. The issue was discovered internally by Arista and has not been reported as maliciously exploited in customer networks.

Impact

Exploitation of this vulnerability can cause the OSPFv3 process to become unresponsive, leading to a process termination and subsequent restart. This disruption can interfere with OSPFv3 routing operations on the switch.

Remediation

Users are advised to upgrade to Arista EOS versions 4.34.2F, 4.33.5M, 4.32.8M, or 4.31.9M. For more information on upgrading, consult the EOS User Manual: Upgrades and Downgrades.

Added: Dec 16, 2025, 8:17 PM
Updated: Dec 16, 2025, 8:17 PM

Vulnerability Rating

Custom Algorithm
spread
5.7
impact
1.3
exploitability
3.5
remediation
7.7
relevance
1.5
threat
0.0
urgency
2.9
incentive
1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.