Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Arista — Vulnerabilities & Security Advisories 11

Browse all 11 CVE security advisories affecting Arista. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Arista develops cloud networking solutions for data centers and cloud environments, with a core focus on high-performance Ethernet switches. Historically, their products have been vulnerable to remote code execution, cross-site scripting, and privilege escalation flaws, often stemming from improper input validation and insecure default configurations. While no major public security incidents have been widely reported, the 11 CVEs on record highlight ongoing security challenges in their software. Their security posture includes regular security updates and vulnerability management programs, though the persistence of certain classes of vulnerabilities suggests areas for improvement in secure coding practices and configuration hardening.

Top products by Arista: Metamako Operating System NG Firewall
CVE IDTitleCVSSSeverityPublished
CVE-2025-2767 Arista NG Firewall User-Agent Cross-Site Scripting Remote Code Execution Vulnerability — NG FirewallCWE-79 8.8 -2025-04-23
CVE-2024-12831 Arista NG Firewall uvm_login Incorrect Authorization Privilege Escalation Vulnerability — NG FirewallCWE-863 7.8 -2024-12-20
CVE-2024-12832 Arista NG Firewall ReportEntry SQL Injection Arbitrary File Read and Write Vulnerability — NG FirewallCWE-89 8.1 -2024-12-20
CVE-2024-12830 Arista NG Firewall custom_handler Directory Traversal Remote Code Execution Vulnerability — NG FirewallCWE-22 9.8 -2024-12-20
CVE-2024-12829 Arista NG Firewall ExecManagerImpl Command Injection Remote Code Execution Vulnerability — NG FirewallCWE-78 8.8 -2024-12-20
CVE-2021-28494 Arista Networks MOS 授权问题漏洞 — Metamako Operating SystemCWE-287 9.6 Critical2021-09-09
CVE-2021-28493 Arista Networks MOS 授权问题漏洞 — Metamako Operating SystemCWE-287 8.4 High2021-09-09
CVE-2021-28495 Arista Networks MOS 授权问题漏洞 — Metamako Operating SystemCWE-287 7.2 High2021-09-09
CVE-2021-28497 Arista Networks MOS 安全漏洞 — Metamako Operating SystemCWE-264 4.4 Medium2021-09-09
CVE-2021-28499 Arista Networks MOS 加密问题漏洞 — Metamako Operating SystemCWE-255 6.3 Medium2021-09-09
CVE-2021-28498 Arista Networks MOS 安全漏洞 — Metamako Operating SystemCWE-255 8.7 High2021-09-09

This page lists every published CVE security advisory associated with Arista. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.