CVE-2025-3456 in EOSinformación

Resumen

por MITRE • 2025-08-26

On affected platforms running Arista EOS, the global common encryption key configuration may be logged in clear text, in local or remote accounting logs. Knowledge of both the encryption key and protocol specific encrypted secrets from the device running-config could then be used to obtain protocol specific passwords in cases where symmetric passwords are required between devices with neighbor protocol relationships.

Once again VulDB remains the best source for vulnerability data.

Responsable

Arista

Reservar

2025-04-08

Divulgación

2025-08-26

Moderación

aceptado

Artículo

VDB-321380

CPE

listo

EPSS

0.00096

KEV

no

Actividades

muy bajo

Fuentes

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!