CVE-2019-18948
Description
An issue was found in Arista EOS. Specific malformed ARP packets can impact the software forwarding of VxLAN packets. This issue is found in Aristas EOS VxLAN code, which can allow attackers to crash the VxlanSwFwd agent. This affects EOS 4.21.8M and below releases in the 4.21.x train, 4.22.3M and below releases in the 4.22.x train, 4.23.1F and below releases in the 4.23.x train, and all releases in 4.15, 4.16, 4.17, 4.18, 4.19, 4.20 code train.
Risk Information
Base Score
7.5
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS Score
Exploitation Probability
0.457
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Multiple Vulnerabilities affected in eos 4.21.0f | NCM |
| Vulnerabilities CVE-2018-14008 ,CVE-2019-18948 ,CVE-2020-15897 ,CVE-2020-17355 are affected in eos 4.21.0 | NCM |
| Vulnerabilities CVE-2018-14008 ,CVE-2018-5254 ,CVE-2018-5255 ,CVE-2019-18948 ,CVE-2020-15897 are affected in eos 4.20 | NCM |
| Vulnerabilities CVE-2018-14008 ,CVE-2018-5254 ,CVE-2018-5255 ,CVE-2019-18948 ,CVE-2020-15897 are affected in eos 4.19 | NCM |
| Vulnerabilities CVE-2018-14008 ,CVE-2018-5254 ,CVE-2019-18948 ,CVE-2020-15897 are affected in eos 4.18 | NCM |
| Vulnerabilities CVE-2018-14008 ,CVE-2018-5254 ,CVE-2019-18948 ,CVE-2020-15897 are affected in eos 4.17 | NCM |
| Vulnerabilities CVE-2018-14008 ,CVE-2018-5254 ,CVE-2019-18948 ,CVE-2020-15897 are affected in eos 4.16 | NCM |
| Vulnerabilities CVE-2018-14008 ,CVE-2018-5254 ,CVE-2019-18948 ,CVE-2020-15897 are affected in eos 4.15 | NCM |
| Vulnerabilities CVE-2019-18948 ,CVE-2020-15897 ,CVE-2020-17355 ,CVE-2020-24360 ,CVE-2020-26569 are affected in eos 4.23.1f | NCM |
| Vulnerabilities CVE-2019-18948 ,CVE-2020-15897 ,CVE-2020-17355 ,CVE-2020-24360 ,CVE-2020-26569 are affected in eos 4.23.0f | NCM |
| Vulnerabilities CVE-2019-18948 ,CVE-2020-15897 ,CVE-2020-17355 ,CVE-2020-24360 ,CVE-2020-26569 are affected in eos 4.22.3m | NCM |
| Vulnerabilities CVE-2019-18948 ,CVE-2020-15897 ,CVE-2020-17355 ,CVE-2020-26569 are affected in eos 4.21.8m | NCM |
| Vulnerabilities CVE-2019-18948 ,CVE-2020-15897 ,CVE-2020-17355 ,CVE-2020-26569 are affected in eos 4.21.8 | NCM |
| Vulnerabilities CVE-2019-18948 ,CVE-2020-15897 ,CVE-2020-15898 ,CVE-2020-17355 ,CVE-2020-26569 are affected in eos 4.21.3 | NCM |
| Vulnerabilities CVE-2019-18948 ,CVE-2020-15897 ,CVE-2020-15898 ,CVE-2020-17355 ,CVE-2020-26569 are affected in eos 4.21.2.4 | NCM |
| Vulnerabilities CVE-2019-18948 ,CVE-2020-15897 ,CVE-2020-15898 ,CVE-2020-17355 ,CVE-2020-26569 are affected in eos 4.21.1f | NCM |
| CVE-2019-18948 | NCM |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234