CWE
319 255
Advisory Published
Updated

CVE-2021-28509: TerminAttr streams MACsec sensitive data in clear text to other authorized users in CVP

First published: Thu May 26 2022(Updated: )

This advisory documents the impact of an internally found vulnerability in Arista EOS state streaming telemetry agent TerminAttr and OpenConfig transport protocols. The impact of this vulnerability is that, in certain conditions, TerminAttr might leak MACsec sensitive data in clear text in CVP to other authorized users, which could cause MACsec traffic to be decrypted or modified by other authorized users on the device.

Credit: psirt@arista.com

Affected SoftwareAffected VersionHow to fix
Arista Terminattr<1.10.11
Arista Terminattr>=1.11.0<1.16.8
Arista Terminattr>=1.17.0<1.19.2
Arista EOS>=4.23<=4.23.11
Arista EOS>=4.24<4.24.10
Arista EOS>=4.25<4.25.8
Arista EOS>=4.26<4.26.6
Arista EOS>=4.27<4.27.4
Arista Ccs-722xpm-48y4
Arista Ccs-722xpm-48zy8
Arista 7050cx3-32s
Arista 7050cx3m-32s
Arista 7050sx3-48c8
Arista 7050sx3-48yc
Arista 7050sx3-48yc12
Arista 7050sx3-48yc8
Arista 7050sx3-96yc8
Arista 7050tx3-48c8
Arista Dcs-7050cx3-32s
Arista Dcs-7050cx3-32s-r
Arista Dcs-7050cx3m-32s
Arista Dcs-7050sx3-48c8
Arista Dcs-7050sx3-48yc12
Arista Dcs-7050sx3-48yc8
Arista Dcs-7050sx3-96yc8
Arista 7280cr2ak-30
Arista 7280cr2k-60
Arista 7280cr3-32d4
Arista 7280cr3-32p4
Arista 7280cr3-96
Arista 7280cr3k-32d4
Arista 7280cr3k-32p4
Arista 7280cr3k-96
Arista 7280dr3-24
Arista 7280dr3k-24
Arista 7280pr3-24
Arista 7280pr3k-24
Arista 7280r2
Arista 7280r3
Arista 7280sr3-48yc8
Arista 7280sr3k-48yc8
Arista 7500r2
Arista 7500r3
Arista 7500r3-24d
Arista 7500r3-24p
Arista 7500r3-36cq
Arista 7500r3k-36cq
Arista 7800r3-36p
Arista 7800r3-48cq
Arista 7800r3k-48cq
Arista 7388x5

Remedy

The recommended resolution is to upgrade to a remediated software version at your earliest convenience. The vulnerability is fixed in the following versions: EOS versions: 4.24.10 and later release in the 4.24.x train 4.25.8 and later releases in the 4.25.x train 4.26.6 and later releases in the 4.26.x train 4.27.4 and later releases in the 4.27.x train TerminAttr versions: TerminAttr v1.10.11 and later releases in the v1.10.x train TerminAttr v1.16.8 and later releases in the v1.16.x train TerminAttr v1.19.2 and later releases

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Frequently Asked Questions

  • What is CVE-2021-28509?

    CVE-2021-28509 is a vulnerability in Arista EOS state streaming telemetry agent TerminAttr and OpenConfig transport protocols that could lead to the leakage of MACsec sensitive data in clear text.

  • Which software is affected by CVE-2021-28509?

    Arista TerminAttr versions up to 1.10.11, Arista TerminAttr versions between 1.11.0 and 1.16.8, and Arista TerminAttr versions between 1.17.0 and 1.19.2, as well as Arista EOS versions between 4.23 and 4.23.11, 4.24 and 4.24.10, 4.25 and 4.25.8, 4.26 and 4.26.6, and 4.27 and 4.27.4 are affected.

  • What is the severity of CVE-2021-28509?

    CVE-2021-28509 has a severity rating of 6.1 (Medium).

  • How can I fix CVE-2021-28509?

    To fix CVE-2021-28509, update Arista TerminAttr to version 1.10.11 or later, or update Arista EOS to version 4.23.11 or later.

  • Where can I find more information about CVE-2021-28509?

    You can find more information about CVE-2021-28509 at the following link: [https://www.arista.com/en/support/advisories-notices/security-advisories/15484-security-advisory-0077](https://www.arista.com/en/support/advisories-notices/security-advisories/15484-security-advisory-0077)

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203