CVE-2023-24512
First published: Tue Apr 25 2023(Updated: )
On affected platforms running Arista EOS, an authorized attacker with permissions to perform gNMI requests could craft a request allowing it to update arbitrary configurations in the switch. This situation occurs only when the Streaming Telemetry Agent (referred to as the TerminAttr agent) is enabled and gNMI access is configured on the agent. Note: This gNMI over the Streaming Telemetry Agent scenario is mostly commonly used when streaming to a 3rd party system and is not used by default when streaming to CloudVision
Credit: psirt@arista.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Arista EOS | >=4.26.0<4.26.10m | |
| Arista EOS | >=4.27.0<4.27.9m | |
| Arista EOS | >=4.28.0<4.28.6m | |
| Arista EOS | >=4.29.0<4.29.2f | |
| Arista 32qd | ||
| Arista 48ehs | ||
| Arista 48Lbas | ||
| Arista 48 lbs | ||
| Arista 48s6qd | ||
| Arista 7010t | ||
| Arista 7020sr-24c2 | ||
| Arista 7020sr-32c2 | ||
| Arista 7020tra-48 | ||
| Arista 7020tra-48 | ||
| Arista DCS-7050CX3-32S | ||
| Arista Dcs-7050cx3m-32s | ||
| Arista 7050qx-32s | ||
| Arista 7050qx2-32s | ||
| Arista 7050SX-128 | ||
| Arista 7050sx-64 | ||
| Arista 7050sx2-72q | ||
| Arista 7050SX2 series | ||
| Arista 7050sx2-72q | ||
| Arista DCS-7050SX3-48C8 | ||
| Arista 7050SX3-48YC | ||
| Arista DCS-7050SX3-48YC12 | ||
| Arista Dcs-7050sx3-48yc8 | ||
| Arista DCS-7050SX3-96YC8 | ||
| Arista 7050TX-48 | ||
| Arista 7050tx-64 | ||
| Arista 7050tx-72q | ||
| Arista 7050TX2-128 | ||
| Arista Dcs-7050tx3-48c8 | ||
| Arista 7060cx2-32s | ||
| Arista 7060cx2-32s | ||
| Arista 7060dx4-32 | ||
| Arista 7060px4-32 | ||
| Arista 7060sx2-48yc6 | ||
| Arista 7130-16g3s | ||
| Arista 7130-48g3s | ||
| Arista 7130-96s | ||
| Arista 7150s-24 | ||
| Arista 7150s-52 | ||
| Arista 7150 Series | ||
| Arista 7150sc-24 | ||
| Arista 7150sc-64 | ||
| Arista 7160-32cq | ||
| Arista 7160-48tc6 | ||
| Arista 7160-48yc6 | ||
| Arista 7170-32cd | ||
| Arista 7170-32cd | ||
| Arista 7170b-64c | ||
| Arista 7170b-64c | ||
| Arista 720df-48y | ||
| Arista 720dp-24s | ||
| Arista 720dp-48s | ||
| Arista 720dt-24s | ||
| Arista 720dt-48s | ||
| Arista Ccs-720xp-24y6 | ||
| Arista Ccs-720xp-24zy4 | ||
| Arista Ccs-720xp-48y6 | ||
| Arista Ccs-720xp-48zc2 | ||
| Arista 720xp-96zc2 | ||
| Arista 7250qx-64 | ||
| Arista 7260cx | ||
| Arista 7260cx3-64 | ||
| Arista 7260qx | ||
| Arista 7260sx2 | ||
| Arista 7280CR2K-60 | ||
| Arista 7280CR3K-32D4 | ||
| Arista 7280CR3K-32P4 | ||
| Arista 7280CR3-96 | ||
| Arista 7280CR3K-32D4 | ||
| Arista 7280CR3K-32P4 | ||
| Arista 7280CR3K-96 | ||
| Arista 7280DR3K-24 | ||
| Arista 7280DR3K-24 | ||
| Arista 7280e | ||
| Arista 7280PR3K-24 | ||
| Arista 7280PR3K-24 | ||
| Arista 7280SR3-48YC8 | ||
| Arista 7280SR3K-48YC8 | ||
| Arista 7300x-32q | ||
| Arista 7300X Series | ||
| Arista 7300x-64t | ||
| Arista 7300x3-32c | ||
| Arista 7300X3-48YC4 | ||
| Arista 7320x-32c | ||
| Arista 7358x4 | ||
| Arista 7368x4 | ||
| Arista 7388x5 | ||
| Arista 7500 Series | ||
| Arista 7500R Series Switch | ||
| Arista 7500R series | ||
| Arista 7500R series | ||
| Arista 7804r3 | ||
| Arista 7808R3 | ||
| Arista 7812r3 | ||
| Arista 7816R3 | ||
| Arista 96LBS | ||
| Arista DCS-7010TX-48 | ||
| Arista DCS-7500-12CQ-LC | ||
| Arista DCS-7500E-12CM-LC | ||
| Arista DCS-7500E-36Q-LC | ||
| Arista DCS-7500E-48S-LC | ||
| Arista DCS-7500E-6C2-LC | ||
| Arista DCS-7500E-72S-LC | ||
| Arista DCS-7500R-36CQ-LC | ||
| Arista DCS-7500R-36Q-LC | ||
| Arista DCS-7500R-48S2CQ-LC | ||
| Arista Ceos | ||
| Arista CloudEOS | ||
| Arista Veos |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2023-24512?
CVE-2023-24512 has been classified with a high severity due to its potential to allow unauthorized configuration updates.
How do I fix CVE-2023-24512?
To fix CVE-2023-24512, it is recommended to update the Arista EOS software to a secure version beyond the affected ranges.
What impact does CVE-2023-24512 have on Arista EOS devices?
CVE-2023-24512 allows an authorized attacker to update arbitrary configurations on affected Arista EOS devices if the Streaming Telemetry Agent is enabled.
Which Arista EOS versions are affected by CVE-2023-24512?
CVE-2023-24512 affects Arista EOS versions from 4.26.0 to 4.26.10m, 4.27.0 to 4.27.9m, 4.28.0 to 4.28.6m, and 4.29.0 to 4.29.2f.
Who is vulnerable to CVE-2023-24512?
Users running impacted versions of Arista EOS with the Streaming Telemetry Agent enabled are vulnerable to CVE-2023-24512.
- agent/weakness
- agent/type
- agent/event
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- agent/severity
- agent/references
- agent/author
- vendor/arista
- canonical/arista eos
- version/arista eos/4.26.0
- version/arista eos/4.27.0
- version/arista eos/4.28.0
- version/arista eos/4.29.0
- canonical/arista 32qd
- canonical/arista 48ehs
- canonical/arista 48lbas
- canonical/arista 48 lbs
- canonical/arista 48s6qd
- canonical/arista 7010t
- canonical/arista 7020sr-24c2
- canonical/arista 7020sr-32c2
- canonical/arista 7020tra-48
- canonical/arista dcs-7050cx3-32s
- canonical/arista dcs-7050cx3m-32s
- canonical/arista 7050qx-32s
- canonical/arista 7050qx2-32s
- canonical/arista 7050sx-128
- canonical/arista 7050sx-64
- canonical/arista 7050sx2-72q
- canonical/arista 7050sx2 series
- canonical/arista dcs-7050sx3-48c8
- canonical/arista 7050sx3-48yc
- canonical/arista dcs-7050sx3-48yc12
- canonical/arista dcs-7050sx3-48yc8
- canonical/arista dcs-7050sx3-96yc8
- canonical/arista 7050tx-48
- canonical/arista 7050tx-64
- canonical/arista 7050tx-72q
- canonical/arista 7050tx2-128
- canonical/arista dcs-7050tx3-48c8
- canonical/arista 7060cx2-32s
- canonical/arista 7060dx4-32
- canonical/arista 7060px4-32
- canonical/arista 7060sx2-48yc6
- canonical/arista 7130-16g3s
- canonical/arista 7130-48g3s
- canonical/arista 7130-96s
- canonical/arista 7150s-24
- canonical/arista 7150s-52
- canonical/arista 7150 series
- canonical/arista 7150sc-24
- canonical/arista 7150sc-64
- canonical/arista 7160-32cq
- canonical/arista 7160-48tc6
- canonical/arista 7160-48yc6
- canonical/arista 7170-32cd
- canonical/arista 7170b-64c
- canonical/arista 720df-48y
- canonical/arista 720dp-24s
- canonical/arista 720dp-48s
- canonical/arista 720dt-24s
- canonical/arista 720dt-48s
- canonical/arista ccs-720xp-24y6
- canonical/arista ccs-720xp-24zy4
- canonical/arista ccs-720xp-48y6
- canonical/arista ccs-720xp-48zc2
- canonical/arista 720xp-96zc2
- canonical/arista 7250qx-64
- canonical/arista 7260cx
- canonical/arista 7260cx3-64
- canonical/arista 7260qx
- canonical/arista 7260sx2
- canonical/arista 7280cr2k-60
- canonical/arista 7280cr3k-32d4
- canonical/arista 7280cr3k-32p4
- canonical/arista 7280cr3-96
- canonical/arista 7280cr3k-96
- canonical/arista 7280dr3k-24
- canonical/arista 7280e
- canonical/arista 7280pr3k-24
- canonical/arista 7280sr3-48yc8
- canonical/arista 7280sr3k-48yc8
- canonical/arista 7300x-32q
- canonical/arista 7300x series
- canonical/arista 7300x-64t
- canonical/arista 7300x3-32c
- canonical/arista 7300x3-48yc4
- canonical/arista 7320x-32c
- canonical/arista 7358x4
- canonical/arista 7368x4
- canonical/arista 7388x5
- canonical/arista 7500 series
- canonical/arista 7500r series switch
- canonical/arista 7500r series
- canonical/arista 7804r3
- canonical/arista 7808r3
- canonical/arista 7812r3
- canonical/arista 7816r3
- canonical/arista 96lbs
- canonical/arista dcs-7010tx-48
- canonical/arista dcs-7500-12cq-lc
- canonical/arista dcs-7500e-12cm-lc
- canonical/arista dcs-7500e-36q-lc
- canonical/arista dcs-7500e-48s-lc
- canonical/arista dcs-7500e-6c2-lc
- canonical/arista dcs-7500e-72s-lc
- canonical/arista dcs-7500r-36cq-lc
- canonical/arista dcs-7500r-36q-lc
- canonical/arista dcs-7500r-48s2cq-lc
- canonical/arista ceos
- canonical/arista cloudeos
- canonical/arista veos