arista eos 不恰当的资源关闭或释放
CVE编号
CVE-2020-24360利用情况
暂无补丁情况
N/A披露时间
2020-12-29漏洞描述
An issue with ARP packets in Arista’s EOS affecting the 7800R3, 7500R3, and 7280R3 series of products may result in issues that cause a kernel crash, followed by a device reload. The affected Arista EOS versions are: 4.24.2.4F and below releases in the 4.24.x train; 4.23.4M and below releases in the 4.23.x train; 4.22.6M and below releases in the 4.22.x train.解决建议
建议您更新当前系统或软件至最新版,完成漏洞的修复。
参考链接 |
|
|---|---|
| https://www.arista.com/en/support/advisories-notices/security-advisories/1199... |
受影响软件情况
| # | 类型 | 厂商 | 产品 | 版本 | 影响面 | ||||
| 1 | |||||||||
|---|---|---|---|---|---|---|---|---|---|
| 运行在以下环境 | |||||||||
| 系统 | arista | eos | * | From (including) 4.22.0f | Up to (including) 4.22.6m | ||||
| 运行在以下环境 | |||||||||
| 系统 | arista | eos | * | From (including) 4.23.0f | Up to (including) 4.23.4m | ||||
| 运行在以下环境 | |||||||||
| 系统 | arista | eos | * | From (including) 4.24.0f | Up to (including) 4.24.2.4f | ||||
| 运行在以下环境 | |||||||||
| 硬件 | arista | 7280cr2ak-30 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | arista | 7280cr2k-60 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | arista | 7280cr3-32d4 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | arista | 7280cr3-32p4 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | arista | 7280cr3-96 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | arista | 7280cr3k-32d4 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | arista | 7280cr3k-32p4 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | arista | 7280cr3k-96 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | arista | 7280dr3-24 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | arista | 7280dr3k-24 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | arista | 7280pr3-24 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | arista | 7280pr3k-24 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | arista | 7280sr3-48yc8 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | arista | 7280sr3k-48yc8 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | arista | 7500r3-24d | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | arista | 7500r3-24p | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | arista | 7500r3-36cq | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | arista | 7500r3k-36cq | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | arista | 7504r3 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | arista | 7508r3 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | arista | 7512r3 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | arista | 7800r3-36p | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | arista | 7800r3-48cq | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | arista | 7800r3k-48cq | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | arista | 7804r3 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | arista | 7808r3 | - | - | |||||
- 攻击路径 相邻
- 攻击复杂度 低
- 权限要求 无
- 影响范围 已更改
- 用户交互 无
- 可用性 高
- 保密性 无
- 完整性 无
| CWE-ID | 漏洞类型 |
| CWE-404 | 不恰当的资源关闭或释放 |
Exp相关链接
版权声明
本站原创文章转载请注明文章出处及链接,谢谢合作!
评论