CVE-2021-28503 (eos)

The impact of this vulnerability is that Arista's EOS eAPI may skip re-evaluating user credentials when certificate based authentication is used, which allows remote attackers to access the device via eAPI.

Original Article

Leave a Reply

Your email address will not be published. Required fields are marked *