MEIFP – Most Exploited Internet-Facing Products

Arista Networks

Products: Arista Edge Threat Management · EOS · EOS - BGP Flowspec · EOS - Interface Traffic Policy · EOS-Policy Based Routing (PBR) · MOS

40.6

Score

CVEs

Active

PoC

KEV

#52

Rank

Period:

Product:

CVE ID	Published	CVSS	Exploit	KEV	AC	PR	Auto	Score(hover)	Affected Products	Description
CVE-2026-7473	2026-06-05	6.9v4.0	ACTIVE		Low	None	YES	40.6	EOS	On affected platforms running Arista EOS where a tunnel decapsulation configuration—such as VXLAN (Virtual Extensible LAN), decap-groups, or a GRE (Generic Routing Encapsulation) tunnel interface—is present, the switch will incorrectly decapsulate and forward other unexpected tunneled packet with a
CVE-2025-0936	2025-05-07	6.5v3.1	POC	—	Low	Low	no	0.0	EOS	On affected platforms running Arista EOS with a gNMI transport enabled, running the gNOI File TransferToRemote RPC with credentials for a remote server may cause these remote-server credentials to be logged or accounted on the local EOS device or possibly on other remote accounting servers (i.e. TAC
CVE-2024-5872	2025-01-10	6.5v3.1	POC	—	Low	None	no	0.0	EOS	On affected platforms running Arista EOS, a specially crafted packet with incorrect VLAN tag might be copied to CPU, which may cause incorrect control plane behavior related to the packet, such as route flaps, multicast routes learnt, etc.
CVE-2024-6437	2025-01-10	5.8v3.1	POC	—	Low	None	no	0.0	EOS - BGP FlowspecEOS - Interface Traffic PolicyEOS-Policy Based Routing (PBR)	On affected platforms running Arista EOS with one of the following features configured to redirect IP traffic to a next hop: policy-based routing (PBR), BGP Flowspec, or interface traffic policy -- certain IP traffic such as IPv4 packets with IP options may bypass the feature's set nexthop action an
CVE-2024-9132	2025-01-10	8.1v3.1	POC	—	High	None	no	0.0	Arista Edge Threat Management	The administrator is able to configure an insecure captive portal script
CVE-2023-24547	2023-12-05	5.9v3.1	POC	—	High	High	no	0.0	MOS	On affected platforms running Arista MOS, the configuration of a BGP password will cause the password to be logged in clear text that can be revealed in local logs or remote logging servers by authenticated users, as well as appear in clear text in the device’s running config.

Each CVE: 10 pts base (Active only), boosted by:

KEV×2.0AC: Low×1.2PR: None×1.3PR: Low×1.1Auto×1.3