On affected platforms running Arista EOS, a specially crafted packet with incorrect VLAN tag might be copied to CPU, which may cause incorrect control plane behavior related to the packet, such as route flaps, multicast routes learnt, etc.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact Low

Availability Impact Low

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00137.

Exploitation poc

Automatable no

Technical Impact partial

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions
Arista Networks EOS unaffected
Version Status Constraints
4.32.0F affected ≤ 4.32.2F
4.31.0M affected ≤ 4.31.4M
4.30.0M affected ≤ 4.30.7M
4.29.0M affected ≤ 4.29.8M
4.28.1F affected ≤ 4.28.11F

No data.

No data.

No data.

Project Subscriptions

No data.

Advisories
Source ID Title
EUVD EUVD EUVD-2024-47159 On affected platforms running Arista EOS, a specially crafted packet with incorrect VLAN tag might be copied to CPU, which may cause incorrect control plane behavior related to the packet, such as route flaps, multicast routes learnt, etc.
Fixes

Solution

The recommended resolution is to upgrade to a remediated software version at your earliest convenience. Arista recommends customers move to the latest version of each release that contains all the fixes listed below. For more information about upgrading see EOS User Manual: Upgrades and Downgrades https://www.arista.com/en/um-eos/eos-upgrades-and-downgrades   CVE-2024-5872 has been fixed in the following releases: * 4.33.0F and later releases in the 4.33.x train * 4.32.3M and later releases in the 4.32.x train * 4.31.5M and later releases in the 4.31.x train * 4.30.8M and later releases in the 4.30.x train * 4.29.9M and later releases in the 4.29.x train * 4.28.12M and later releases in the 4.28.x train

Workaround

There is no workaround.

References
Link Providers
https://www.arista.com/en/support/advisories-notices/security-advisory/20649-security-advisory-0106 cve-icon cve-icon
History

Fri, 10 Jan 2025 21:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Fri, 10 Jan 2025 20:45:00 +0000

Type Values Removed Values Added
Description On affected platforms running Arista EOS, a specially crafted packet with incorrect VLAN tag might be copied to CPU, which may cause incorrect control plane behavior related to the packet, such as route flaps, multicast routes learnt, etc.
Title On affected platforms running Arista EOS, a specially crafted packet with incorrect VLAN tag might be copied to CPU, which may cause incorrect control plane behavior related to the packet, such as route flaps, multicast routes learnt, etc.
References
Metrics cvssV3_1

{'score': 6.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L'}

Projects

Sign in to view the affected projects.

cve-icon MITRE

Status: PUBLISHED

Assigner: Arista

Published:

Updated: 2025-01-10T21:11:37.497Z

Reserved: 2024-06-11T15:41:47.035Z

Link: CVE-2024-5872

cve-icon Vulnrichment

Updated: 2025-01-10T21:11:16.776Z

cve-icon NVD

Status : Deferred

Published: 2025-01-10T21:15:13.367

Modified: 2026-04-15T00:35:42.020

Link: CVE-2024-5872

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.

Weaknesses

No weakness.