CVE-2023-24510: On the affected platforms running EOS, a malformed DHCP packet might cause the DHCP relay agent to restart.
First published: Mon Jun 05 2023(Updated: )
On the affected platforms running EOS, a malformed DHCP packet might cause the DHCP relay agent to restart.
Credit: psirt@arista.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Arista EOS | <=4.25.10m | |
| Arista EOS | >=4.26.0<4.26.10m | |
| Arista EOS | >=4.27.0<4.27.10m | |
| Arista EOS | >=4.28.0<4.28.7m | |
| Arista EOS | >=4.29.0<4.29.2f | |
| Arista CloudEOS | ||
| Arista CloudEOS | ||
| Arista Veos | ||
| Arista 7010t-48 | ||
| Arista 7010t | ||
| Arista DCS-7010TX-48 | ||
| Arista DCS-7010TX-48 | ||
| Arista 7020r | ||
| Arista 7020sr-24c2 | ||
| Arista 7020sr-32c2 | ||
| Arista 7020tra-48 | ||
| Arista 7020tra-48 | ||
| Arista DCS-7050CX3-32S | ||
| Arista Dcs-7050cx3m-32s | ||
| Arista 7050qx-32s | ||
| Arista 7050qx2-32s | ||
| Arista 7050SX-128 | ||
| Arista 7050sx-64 | ||
| Arista 7050sx2-72q | ||
| Arista 7050SX2 series | ||
| Arista 7050sx2-72q | ||
| Arista DCS-7050SX3-48C8 | ||
| Arista 7050SX3-48YC | ||
| Arista DCS-7050SX3-48YC12 | ||
| Arista Dcs-7050sx3-48yc8 | ||
| Arista DCS-7050SX3-96YC8 | ||
| Arista 7050TX-48 | ||
| Arista 7050tx-64 | ||
| Arista 7050tx-72q | ||
| Arista 7050TX2-128 | ||
| Arista Dcs-7050tx3-48c8 | ||
| Arista 7060cx2-32s | ||
| Arista 7060cx2-32s | ||
| Arista 7060dx4-32 | ||
| Arista 7060px4-32 | ||
| Arista 7060sx2-48yc6 | ||
| Arista 7130 | ||
| Arista 7130-16g3s | ||
| Arista 7130-48g3s | ||
| Arista 7130-96s | ||
| Arista 7150s-24 | ||
| Arista 7150s-52 | ||
| Arista 7150 Series | ||
| Arista 7150sc-24 | ||
| Arista 7150sc-64 | ||
| Arista 7160-32cq | ||
| Arista 7160-48tc6 | ||
| Arista 7160-48yc6 | ||
| Arista 7170-32cd | ||
| Arista 7170-32cd | ||
| Arista 7170b-64c | ||
| Arista 7170b-64c | ||
| Arista 720df-48y | ||
| Arista 720dp-24s | ||
| Arista 720dp-48s | ||
| Arista 720dt-24s | ||
| Arista 720dt-48s | ||
| Arista 720dt-48y | ||
| Arista Ccs-720xp-24y6 | ||
| Arista Ccs-720xp-24zy4 | ||
| Arista Ccs-720xp-48y6 | ||
| Arista Ccs-720xp-48zc2 | ||
| Arista 720xp-96zc2 | ||
| Arista CCS-722XPM-48Y4 | ||
| Arista Ccs-722xpm-48zy8 | ||
| Arista 7250qx-64 | ||
| Arista 7260cx | ||
| Arista 7260cx3-64 | ||
| Arista 7260cx3 | ||
| Arista 7260qx | ||
| Arista 7260qx | ||
| Arista 7260sx2 | ||
| Arista 7280e | ||
| Arista 7280R2 | ||
| Arista 7280R Series | ||
| Arista 7300x-32q | ||
| Arista 7300X Series | ||
| Arista 7300x-64t | ||
| Arista 7300x3-32c | ||
| Arista 7300X3-48YC4 | ||
| Arista 7320x-32c | ||
| Arista 7358x4 | ||
| Arista 7368x4 | ||
| Arista 7388x5 | ||
| Arista 750 | ||
| Arista DCS-7500E-6C2-LC | ||
| Arista 7500 Series | ||
| Arista 7500 Series | ||
| Arista 7500R Series | ||
| Arista 7500 Series | ||
| Arista 7500R Series Switch | ||
| Arista 7500R series | ||
| Arista 7500R series | ||
| Arista 7800 Series | ||
| Arista 7800 Series | ||
| Arista 7800 Series |
Remedy
CVE-2023-24510 has been fixed in the following releases: - 4.29.2F and later releases in the 4.29.x train - 4.28.7M and later releases in the 4.28.x train - 4.27.10M and later releases in the 4.27.x train - 4.26.10M and later releases in the 4.26.x train
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2023-24510?
CVE-2023-24510 is considered a medium severity vulnerability affecting Arista EOS and may cause a DHCP relay agent restart.
What versions of Arista EOS are affected by CVE-2023-24510?
Versions of Arista EOS up to 4.25.10m and between 4.26.0 and 4.26.10m, along with between 4.27.0 and 4.27.10m, and between 4.28.0 and 4.28.7m are affected by CVE-2023-24510.
How do I fix CVE-2023-24510?
To mitigate CVE-2023-24510, users should upgrade their Arista EOS to a version that is not vulnerable.
What type of attack can exploit CVE-2023-24510?
An attacker can exploit CVE-2023-24510 by sending a malformed DHCP packet, causing the DHCP relay agent to restart.
Is CVE-2023-24510 specific to any Arista hardware devices?
CVE-2023-24510 is specifically associated with the Arista EOS software, rather than any specific hardware devices.
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/title
- agent/severity
- agent/remedy
- agent/references
- agent/last-modified-date
- agent/weakness
- agent/author
- agent/first-publish-date
- agent/event
- agent/description
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/arista
- canonical/arista eos
- version/arista eos/4.25.10m
- version/arista eos/4.26.0
- version/arista eos/4.27.0
- version/arista eos/4.28.0
- version/arista eos/4.29.0
- canonical/arista cloudeos
- canonical/arista veos
- canonical/arista 7010t-48
- canonical/arista 7010t
- canonical/arista dcs-7010tx-48
- canonical/arista 7020r
- canonical/arista 7020sr-24c2
- canonical/arista 7020sr-32c2
- canonical/arista 7020tra-48
- canonical/arista dcs-7050cx3-32s
- canonical/arista dcs-7050cx3m-32s
- canonical/arista 7050qx-32s
- canonical/arista 7050qx2-32s
- canonical/arista 7050sx-128
- canonical/arista 7050sx-64
- canonical/arista 7050sx2-72q
- canonical/arista 7050sx2 series
- canonical/arista dcs-7050sx3-48c8
- canonical/arista 7050sx3-48yc
- canonical/arista dcs-7050sx3-48yc12
- canonical/arista dcs-7050sx3-48yc8
- canonical/arista dcs-7050sx3-96yc8
- canonical/arista 7050tx-48
- canonical/arista 7050tx-64
- canonical/arista 7050tx-72q
- canonical/arista 7050tx2-128
- canonical/arista dcs-7050tx3-48c8
- canonical/arista 7060cx2-32s
- canonical/arista 7060dx4-32
- canonical/arista 7060px4-32
- canonical/arista 7060sx2-48yc6
- canonical/arista 7130
- canonical/arista 7130-16g3s
- canonical/arista 7130-48g3s
- canonical/arista 7130-96s
- canonical/arista 7150s-24
- canonical/arista 7150s-52
- canonical/arista 7150 series
- canonical/arista 7150sc-24
- canonical/arista 7150sc-64
- canonical/arista 7160-32cq
- canonical/arista 7160-48tc6
- canonical/arista 7160-48yc6
- canonical/arista 7170-32cd
- canonical/arista 7170b-64c
- canonical/arista 720df-48y
- canonical/arista 720dp-24s
- canonical/arista 720dp-48s
- canonical/arista 720dt-24s
- canonical/arista 720dt-48s
- canonical/arista 720dt-48y
- canonical/arista ccs-720xp-24y6
- canonical/arista ccs-720xp-24zy4
- canonical/arista ccs-720xp-48y6
- canonical/arista ccs-720xp-48zc2
- canonical/arista 720xp-96zc2
- canonical/arista ccs-722xpm-48y4
- canonical/arista ccs-722xpm-48zy8
- canonical/arista 7250qx-64
- canonical/arista 7260cx
- canonical/arista 7260cx3-64
- canonical/arista 7260cx3
- canonical/arista 7260qx
- canonical/arista 7260sx2
- canonical/arista 7280e
- canonical/arista 7280r2
- canonical/arista 7280r series
- canonical/arista 7300x-32q
- canonical/arista 7300x series
- canonical/arista 7300x-64t
- canonical/arista 7300x3-32c
- canonical/arista 7300x3-48yc4
- canonical/arista 7320x-32c
- canonical/arista 7358x4
- canonical/arista 7368x4
- canonical/arista 7388x5
- canonical/arista 750
- canonical/arista dcs-7500e-6c2-lc
- canonical/arista 7500 series
- canonical/arista 7500r series
- canonical/arista 7500r series switch
- canonical/arista 7800 series