CVE-2024-6437— On affected platforms running Arista EOS with one of the following features configured to redirect IP traffic to a next hop: policy-based routing (PBR), BGP Flowspec, or interface traffic policy -- certain IP traffic such as IPv4 packets with IP options ma
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2024-6437
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
On affected platforms running Arista EOS with one of the following features configured to redirect IP traffic to a next hop: policy-based routing (PBR), BGP Flowspec, or interface traffic policy -- certain IP traffic such as IPv4 packets with IP options ma
Source: NVD (National Vulnerability Database)
Vulnerability Description
On affected platforms running Arista EOS with one of the following features configured to redirect IP traffic to a next hop: policy-based routing (PBR), BGP Flowspec, or interface traffic policy -- certain IP traffic such as IPv4 packets with IP options may bypass the feature's set nexthop action and be slow-path forwarded (FIB routed) by the kernel as the packets are trapped to the CPU instead of following the redirect action's destination.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Arista EOS 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Arista EOS是美国Arista公司的一个完全可编程的、高度模块化的、基于Linux的网络操作系统。 Arista EOS存在安全漏洞,该漏洞源于在运行 Arista EOS 的受影响平台上,如果将部分功能配置为将 IP 流量重定向到下一跳可能会绕过该功能设置的下一跳操作,并由内核进行慢速路径转发(FIB 路由),因为数据包被困在 CPU 中,而不是遵循重定向操作的目的地。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Arista Networks | EOS-Policy Based Routing (PBR) | 4.32.0F ~ 4.32.1F | - | |
| Arista Networks | EOS - BGP Flowspec | 4.32.0F ~ 4.32.1F | - | |
| Arista Networks | EOS - Interface Traffic Policy | 4.32.0F ~ 4.32.1F | - |
II. Public POCs for CVE-2024-6437
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2024-6437
请登录查看更多情报信息。
Same Patch Batch · Arista Networks · 2025-01-10 · 13 CVEs total
| CVE-2024-9188 | 8.8 HIGH | Specially constructed queries cause cross platform scripting leaking administrator tokens |
| CVE-2024-47519 | 8.3 HIGH | Backup uploads to ETM subject to man-in-the-middle interception |
| CVE-2024-9134 | 8.3 HIGH | Multiple SQL Injection vulnerabilities exist in the reporting application. A user with ad |
| CVE-2024-9132 | 8.1 HIGH | The administrator is able to configure an insecure captive portal script |
| CVE-2024-47520 | 7.6 HIGH | A user with advanced report application access rights can perform actions for which they a |
| CVE-2024-9131 | 7.2 HIGH | A user with administrator privileges can perform command injection |
| CVE-2024-47517 | 6.8 MEDIUM | Expired and unusable administrator authentication tokens can be revealed by units that hav |
| CVE-2024-9133 | 6.6 MEDIUM | A user with administrator privileges is able to retrieve authentication tokens |
| CVE-2024-5872 | 6.5 MEDIUM | On affected platforms running Arista EOS, a specially crafted packet with incorrect VLAN t |
| CVE-2024-47518 | 6.4 MEDIUM | Specially constructed queries targeting ETM could discover active remote access sessions |
| CVE-2024-7142 | 4.6 MEDIUM | On Arista CloudVision Appliance (CVA) affected releases running on appliances that support |
| CVE-2024-7095 | 4.3 MEDIUM | On affected platforms running Arista EOS with SNMP configured, if “snmp-server transmit ma |
IV. Related Vulnerabilities
Same vendor: Arista Networks
- CVE-2025-7048
On affected platforms running Arista EOS with MACsec configu - CVE-2025-8872
A specially crafted packet can cause the OSFPv3 process to h - CVE-2025-8870
On affected platforms running Arista EOS, certain serial con - CVE-2025-54549
Cryptographic validation of upgrade images could be circumve - CVE-2025-54548
On affected platforms, restricted users could view sensitive
V. Comments for CVE-2024-6437
No comments yet