CVE-2020-24360
HIGHArista EOS <4.24.2.4F, <4.23.4M, <4.22.6M - Kernel Crash
Title source: llmDescription
An issue with ARP packets in Arista’s EOS affecting the 7800R3, 7500R3, and 7280R3 series of products may result in issues that cause a kernel crash, followed by a device reload. The affected Arista EOS versions are: 4.24.2.4F and below releases in the 4.24.x train; 4.23.4M and below releases in the 4.23.x train; 4.22.6M and below releases in the 4.22.x train.
References (1)
Core 1
Core References
Exploit, Vendor Advisory x_refsource_confirm
https://www.arista.com/en/support/advisories-notices/security-advisories/11999-security-advisory-59
Scores
CVSS v3
7.4
EPSS
0.0065
EPSS Percentile
46.4%
Attack Vector
ADJACENT_NETWORK
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
Details
CWE
CWE-404
Status
published
Products (1)
arista/eos
4.22.0f - 4.22.6m
Published
Dec 28, 2020
Tracked Since
Feb 18, 2026