VYPR
Unrated severityNVD Advisory· Published Apr 13, 2023· Updated Feb 7, 2025

On affected modular platforms running Arista EOS equipped with both redundant supervisor modules and having the redundancy protocol configured with RPR or SSO, an existing unprivileged user can login to the standby supervisor as a root user, leading t ...

CVE-2023-24509

Description

On affected modular platforms running Arista EOS equipped with both redundant supervisor modules and having the redundancy protocol configured with RPR or SSO, an existing unprivileged user can login to the standby supervisor as a root user, leading to a privilege escalation. Valid user credentials are required in order to exploit this vulnerability.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Arista/Eosllm-fuzzy
  • Arista Networks/Arista EOSv5
    Range: 4.23.0 4.23.13M

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.