CVE-2026-25623

Vulnerability

An input validation vulnerability exists in the browser management pipeline of Arista Edge Threat Management - Arista Next Generation Firewall (NGFW). This flaw allows authenticated administrators to obtain underlying terminal script code processing execution permissions. The specific CVE provided, CVE-2026-25623, is tracked internally as NGFW-1. Affected versions are not explicitly detailed in the provided reference, but the advisory covers multiple NGFW vulnerabilities [1].

Exploitation

An attacker with administrative privileges logged into the user interface can exploit this vulnerability. By leveraging the insecure input validation within the browser management pipeline, the attacker can trigger command execution [1]. No user interaction is required, and the attack can be performed remotely.

Impact

Successful exploitation allows an authenticated administrator to gain underlying terminal script code processing execution permissions. This can lead to arbitrary command execution on the affected Arista NGFW device, potentially compromising its integrity and confidentiality [1].

Mitigation

Arista has released security advisory 0133 detailing multiple vulnerabilities, including CVE-2026-25623. While the advisory was released on February 3, 2026, specific patched versions and release dates for this particular CVE are not yet disclosed in the available references. Users are advised to consult the Arista support page for updates [1].