First published: Thu Feb 20 2020(Updated: )
** DISPUTED ** Arista DCS-7050QX-32S-R 4.20.9M, DCS-7050CX3-32S-R 4.20.11M, and DCS-7280SRAM-48C6-R 4.22.0.1F devices (and possibly other products) allow attackers to bypass intended TACACS+ shell restrictions via a | character. NOTE: the vendor reports that this is a configuration issue relating to an overly permissive regular expression in the TACACS+ server permitted commands.
Credit: cve@mitre.org cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Arista Dcs-7050qx-32s-r Firmware | =4.20.9m | |
Arista DCS-7050QX-32S-R | ||
Arista Dcs-7050cx3-32s-r Firmware | =4.20.11m | |
Arista Dcs-7050cx3-32s-r | ||
Arista Dcs-7280sram-48c6-r Firmware | =4.22.0.1f | |
Arista Dcs-7280sram-48c6-r | ||
All of | ||
Arista Dcs-7050qx-32s-r Firmware | =4.20.9m | |
Arista DCS-7050QX-32S-R | ||
All of | ||
Arista Dcs-7050cx3-32s-r Firmware | =4.20.11m | |
Arista Dcs-7050cx3-32s-r | ||
All of | ||
Arista Dcs-7280sram-48c6-r Firmware | =4.22.0.1f | |
Arista Dcs-7280sram-48c6-r |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2020-9015 is a vulnerability in Arista DCS-7050QX-32S-R, DCS-7050CX3-32S-R, and DCS-7280SRAM-48C6-R devices that allows attackers to bypass TACACS+ shell restrictions.
The severity of CVE-2020-9015 is critical with a CVSS score of 9.8.
Arista DCS-7050QX-32S-R 4.20.9M, DCS-7050CX3-32S-R 4.20.11M, and DCS-7280SRAM-48C6-R 4.22.0.1F devices are affected.
Attackers can exploit CVE-2020-9015 by using the | character to bypass intended TACACS+ shell restrictions.
No fix is currently available, however, Arista has provided configuration guidance to mitigate the issue.