medium
6.8
CWE
319 255
Advisory Published
Updated

CVE-2021-28508: TerminAttr streams IPsec sensitive data in clear text to other authorized users in CVP

First published: Wed May 25 2022(Updated: )

This advisory documents the impact of an internally found vulnerability in Arista EOS state streaming telemetry agent TerminAttr and OpenConfig transport protocols. The impact of this vulnerability is that, in certain conditions, TerminAttr might leak IPsec sensitive data in clear text in CVP to other authorized users, which could cause IPsec traffic to be decrypted or modified by other authorized users on the device.

Credit: psirt@arista.com

Affected SoftwareAffected VersionHow to fix
Arista Terminattr<1.10.11
Arista Terminattr>=1.11.0<1.16.8
Arista Terminattr>=1.17.0<1.19.0
Arista EOS>=4.23<=4.23.11
Arista EOS>=4.24<4.24.10
Arista EOS>=4.25<4.25.8
Arista EOS>=4.26<4.26.6
Arista EOS>=4.27<4.27.2
Arista Ccs-722xpm-48y4
Arista Ccs-722xpm-48zy8
Arista 7050cx3-32s
Arista 7050cx3m-32s
Arista 7050sx3-48c8
Arista 7050sx3-48yc
Arista 7050sx3-48yc12
Arista 7050sx3-48yc8
Arista 7050sx3-96yc8
Arista 7050tx3-48c8
Arista Dcs-7050cx3-32s
Arista Dcs-7050cx3-32s-r
Arista Dcs-7050cx3m-32s
Arista Dcs-7050sx3-48c8
Arista Dcs-7050sx3-48yc12
Arista Dcs-7050sx3-48yc8
Arista Dcs-7050sx3-96yc8
Arista 7280cr2ak-30
Arista 7280cr2k-60
Arista 7280cr3-32d4
Arista 7280cr3-32p4
Arista 7280cr3-96
Arista 7280cr3k-32d4
Arista 7280cr3k-32p4
Arista 7280cr3k-96
Arista 7280dr3-24
Arista 7280dr3k-24
Arista 7280pr3-24
Arista 7280pr3k-24
Arista 7280r2
Arista 7280r3
Arista 7280sr3-48yc8
Arista 7280sr3k-48yc8
Arista 7500r2
Arista 7500r3
Arista 7500r3-24d
Arista 7500r3-24p
Arista 7500r3-36cq
Arista 7500r3k-36cq
Arista 7800r3-36p
Arista 7800r3-48cq
Arista 7800r3k-48cq
Arista 7388x5

Remedy

The recommended resolution is to upgrade to a remediated software version at your earliest convenience. The vulnerability is fixed in the following versions: EOS versions: 4.24.10 and later release in the 4.24.x train 4.25.8 and later releases in the 4.25.x train 4.26.6 and later releases in the 4.26.x train 4.27.2 and later releases in the 4.27.x train TerminAttr versions: TerminAttr v1.10.11 and later releases in the v1.10.x train TerminAttr v1.16.8 and later releases in the v1.16.x train TerminAttr v1.19.0 and later releases

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Frequently Asked Questions

  • What is CVE-2021-28508?

    CVE-2021-28508 is an internally found vulnerability in Arista EOS state streaming telemetry agent TerminAttr and OpenConfig transport protocols that can leak IPsec sensitive data in clear text in CVP to other systems.

  • Which software is affected by CVE-2021-28508?

    Arista TerminAttr versions 1.10.11, 1.11.0 to 1.16.8, and 1.17.0 to 1.19.0 as well as Arista EOS versions 4.23 to 4.23.11, 4.24 to 4.24.10, 4.25 to 4.25.8, 4.26 to 4.26.6, and 4.27 to 4.27.2 are affected by CVE-2021-28508.

  • What is the severity of CVE-2021-28508?

    CVE-2021-28508 has a severity level of medium with a CVSS score of 6.1.

  • How can I fix CVE-2021-28508?

    To fix CVE-2021-28508, it is recommended to upgrade to a non-vulnerable version of Arista TerminAttr or Arista EOS.

  • Where can I find more information about CVE-2021-28508?

    More information about CVE-2021-28508 can be found in the Arista Security Advisory 0077 at this link: [https://www.arista.com/en/support/advisories-notices/security-advisories/15484-security-advisory-0077]

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203