📦

ng_firewall

Vendor: arista

Actively Exploited 0 CISA KEV List

PoC / Exploits 0 Code Available

Total RCEs 5 Remote Access

Total CVEs 25 Total Indexed

Avg. EPSS 1.03% Exploit Prob.

Latest CVE CVE-2025-2767 Apr 23

Security Vulnerability Index

Page 1 / 3

9.6 CVSS

CVE-2025-2767

Arista NG Firewall User-Agent Cross-Site Scripting Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Arista NG Firewall. Minimal user interaction is required to exploit this vulnerability. The specific flaw exists within the processing of the User-Agent HTTP header. The issue results from the lack of proper validation of user-supplied data, which can lead to the injection of an arbitrary script. An attacker can leverage this vulnerability to execute code in the context of root. Was ZDI-CAN-24407.

EPSS: 0.64%

Severity: CRITICAL

Apr 23, 2025

8.8 CVSS

CVE-2024-9188

Specially constructed queries cause cross platform scripting leaking administrator tokens

EPSS: 0.76%

Severity: HIGH

Jan 10, 2025

8.3 CVSS

CVE-2024-9134

Multiple SQL Injection vulnerabilities exist in the reporting application. A user with advanced report application access rights can exploit the SQL injection, allowing them to execute commands on the underlying operating system with elevated privileges.

EPSS: 0.23%

Severity: HIGH

Jan 10, 2025

6.6 CVSS

CVE-2024-9133

A user with administrator privileges is able to retrieve authentication tokens

EPSS: 0.03%

Severity: MEDIUM

Jan 10, 2025

8.1 CVSS

CVE-2024-9132

RCE

The administrator is able to configure an insecure captive portal script

EPSS: 0.81%

Severity: HIGH

Jan 10, 2025

7.2 CVSS

CVE-2024-9131

RCE

A user with administrator privileges can perform command injection

EPSS: 0.39%

Severity: HIGH

Jan 10, 2025

7.6 CVSS

CVE-2024-47520

A user with advanced report application access rights can perform actions for which they are not authorized

EPSS: 0.16%

Severity: HIGH

Jan 10, 2025

8.3 CVSS

CVE-2024-47519

Backup uploads to ETM subject to man-in-the-middle interception

EPSS: 0.11%

Severity: HIGH

Jan 10, 2025

6.4 CVSS

CVE-2024-47518

Specially constructed queries targeting ETM could discover active remote access sessions

EPSS: 0.08%

Severity: MEDIUM

Jan 10, 2025

6.8 CVSS

CVE-2024-47517

Expired and unusable administrator authentication tokens can be revealed by units that have timed out from ETM access

EPSS: 0.10%

Severity: MEDIUM

Jan 10, 2025

Displaying 10 of 25 Total Entries

1 2 3

Total 3 Sections