CVE-2026-25622
MEDIUMArista Edge Threat Management NGFW Captive Portal Custom Handler Command Injection
Title source: cnaDescription
A Captive Portal Custom Handler command injection vulnerability exists in Arista Edge Threat Management - Arista Next Generation Firewall (NGFW). On affected platforms, an administrative account logged into the user interface can exploit this input handling behavior to execute arbitrary platform shell commands.
References (1)
Core 1
Core References
Vendor Advisory vendor-advisory
https://www.arista.com/en/support/advisories-notices/security-advisory/23399-security-advisory-0133
Scores
CVSS v3
6.0
EPSS
0.1024
EPSS Percentile
95.1%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:L
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-78
Status
published
Products (2)
arista/ng_firewall
< 17.4.1
Arista Networks/Arista Edge Threat Management - Arista Next Generation Firewall (NGFW)
< 17.4.0
Published
Jun 05, 2026
Tracked Since
Jun 06, 2026