CVE-2021-28493

In Arista's MOS (Metamako Operating System) software which is supported on the 7130 product line, under certain conditions, a user may be able to execute commands despite not having the privileges to do so. This issue affects: Arista Metamako Operating System All releases in the MOS-0.1x train MOS-0.32.0 and prior releases
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:arista:metamako_operating_system:*:*:*:*:*:*:*:*
cpe:2.3:h:arista:7130:-:*:*:*:*:*:*:*

History

21 Nov 2024, 05:59

Type Values Removed Values Added
CVSS v2 : 4.6
v3 : 7.8
v2 : 4.6
v3 : 8.4
References () https://www.arista.com/en/support/advisories-notices/security-advisories/12915-security-advisory-67 - Mitigation, Vendor Advisory () https://www.arista.com/en/support/advisories-notices/security-advisories/12915-security-advisory-67 - Mitigation, Vendor Advisory

Information

Published : 2021-09-09 13:15

Updated : 2024-11-21 05:59


NVD link : CVE-2021-28493

Mitre link : CVE-2021-28493

CVE.ORG link : CVE-2021-28493


JSON object : View

Products Affected

arista

  • metamako_operating_system
  • 7130
CWE
CWE-287

Improper Authentication