CVE-2024-9135: On affected platforms running Arista EOS with BGP Link State configured, BGP peer flap can cause the BGP agent to leak memory. This may result in BGP routing processing being terminated and route flapping.
First published: Tue Mar 04 2025(Updated: )
On affected platforms running Arista EOS with BGP Link State configured, BGP peer flap can cause the BGP agent to leak memory. This may result in BGP routing processing being terminated and route flapping.
Credit: psirt@arista.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Arista EOS |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2024-9135?
CVE-2024-9135 is considered to have a high severity due to its potential to cause BGP routing failures.
How do I fix CVE-2024-9135?
To fix CVE-2024-9135, users should update to the latest version of Arista EOS that includes the security patch.
What impact does CVE-2024-9135 have on network performance?
CVE-2024-9135 can cause significant network performance issues as it may lead to routing processing termination due to memory leakage.
Which platforms are affected by CVE-2024-9135?
CVE-2024-9135 affects platforms running Arista EOS with BGP Link State configured.
Can CVE-2024-9135 cause data loss?
While CVE-2024-9135 itself does not directly cause data loss, the resulting BGP routing failures may lead to temporary loss of network connectivity.
- collector/mitre-cve
- source/MITRE
- agent/title
- agent/type
- agent/weakness
- agent/first-publish-date
- agent/description
- agent/references
- agent/guess-ai
- agent/software-canonical-lookup
- agent/softwarecombine
- collector/nvd-api
- source/NVD
- agent/last-modified-date
- agent/severity
- agent/source
- agent/author
- agent/tags
- agent/event
- vendor/arista
- canonical/arista eos