CVE-2020-24360
Description
An issue with ARP packets in Aristas EOS affecting the 7800R3, 7500R3, and 7280R3 series of products may result in issues that cause a kernel crash, followed by a device reload. The affected Arista EOS versions are: 4.24.2.4F and below releases in the 4.24.x train; 4.23.4M and below releases in the 4.23.x train; 4.22.6M and below releases in the 4.22.x train.
Risk Information
Base Score
7.4
MODERATE
Vector
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
EPSS Score
Exploitation Probability
0.101
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Vulnerabilities CVE-2019-18948 ,CVE-2020-15897 ,CVE-2020-17355 ,CVE-2020-24360 ,CVE-2020-26569 are affected in eos 4.23.1f | NCM |
| Vulnerabilities CVE-2019-18948 ,CVE-2020-15897 ,CVE-2020-17355 ,CVE-2020-24360 ,CVE-2020-26569 are affected in eos 4.23.0f | NCM |
| Vulnerabilities CVE-2019-18948 ,CVE-2020-15897 ,CVE-2020-17355 ,CVE-2020-24360 ,CVE-2020-26569 are affected in eos 4.22.3m | NCM |
| Vulnerabilities CVE-2020-15897 ,CVE-2020-17355 ,CVE-2020-24360 ,CVE-2020-26569 are affected in eos 4.24.0f | NCM |
| Vulnerabilities CVE-2020-15897 ,CVE-2020-17355 ,CVE-2020-24360 ,CVE-2020-26569 are affected in eos 4.23.2f | NCM |
| Vulnerabilities CVE-2020-15897 ,CVE-2020-17355 ,CVE-2020-24360 ,CVE-2020-26569 are affected in eos 4.22.4m | NCM |
| Improper Resource Shutdown or Release Vulnerability (CVE-2020-24360) | NCM |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234