V
Scaner-VS
ENRU
HomeCatalogSourcesCWECAPECATT&CKMitigationsProductsVendorsDocs
Filters

All vulnerabilities

20 / 20
Product: arista:ng_firewall×Clear all
7.0
CVE-2026-25620CVE
An encrypted password command injection vulnerability exists in the Captive Portal application …
2026-01-01
EPSS19.9%
pct 97
7.0
CVE-2026-25622CVE
A Captive Portal Custom Handler command injection vulnerability exists in Arista Edge Threat Ma…
2026-01-01
EPSS10.2%
pct 95
8.8
CVE-2024-27889CVE
Multiple SQL Injection vulnerabilities exist in the reporting application of the Arista Edge Th…
2024-01-01
EPSS8.8%
pct 94
7.0
CVE-2026-25623CVE
An input validation command execution vulnerability exists in the browser management pipeline o…
2026-01-01
EPSS6.2%
pct 92
7.2
CVE-2024-9131CVE
A user with administrator privileges can perform command injection
2024-01-01
EPSS1.4%
pct 67
8.8
CVE-2024-12829CVE
Arista NG Firewall ExecManagerImpl Command Injection Remote Code Execution Vulnerability. This …
2024-01-01
EPSS1.3%
pct 65
7.3
CVE-2024-12830CVE
Arista NG Firewall custom_handler Directory Traversal Remote Code Execution Vulnerability. This…
2024-01-01Pre-auth
EPSS1.0%
pct 57
9.8
CVE-2024-9132CVE
The administrator is able to configure an insecure captive portal script
2024-01-01Pre-auth
EPSS0.7%
pct 46
8.3
CVE-2024-9134CVE
Multiple SQL Injection vulnerabilities exist in the reporting application. A user with advance…
2024-01-01
EPSS0.6%
pct 43
9.6
CVE-2025-2767CVE
Arista NG Firewall User-Agent Cross-Site Scripting Remote Code Execution Vulnerability. This vu…
2025-01-01Pre-auth
EPSS0.5%
pct 38
6.3
CVE-2024-12832CVE
Arista NG Firewall ReportEntry SQL Injection Arbitrary File Read and Write Vulnerability. This …
2024-01-01
EPSS0.5%
pct 37
8.8
CVE-2024-9188CVE
Specially constructed queries cause cross platform scripting leaking administrator tokens
2024-01-01Pre-auth
EPSS0.5%
pct 36
7.6
CVE-2024-47518CVE
Specially constructed queries targeting ETM could discover active remote access sessions
2024-01-01
EPSS0.4%
pct 32
7.6
CVE-2024-47520CVE
A user with advanced report application access rights can perform actions for which they are no…
2024-01-01
EPSS0.4%
pct 31
6.8
CVE-2024-47517CVE
Expired and unusable administrator authentication tokens can be revealed by units that have tim…
2024-01-01
EPSS0.4%
pct 30
7.1
CVE-2024-47519CVE
Backup uploads to ETM subject to man-in-the-middle interception
2024-01-01
EPSS0.3%
pct 24
7.0
CVE-2026-25621CVE
A Reports application infrastructure vulnerability exists in Arista Edge Threat Management - Ar…
2026-01-01
EPSS0.2%
pct 12
7.8
CVE-2024-12831CVE
Arista NG Firewall uvm_login Incorrect Authorization Privilege Escalation Vulnerability. This v…
2024-01-01
EPSS0.2%
pct 5
5.6
CVE-2024-9133CVE
A user with administrator privileges is able to retrieve authentication tokens
2024-01-01
EPSS0.2%
pct 5
5.8
CVE-2026-25624CVE
An administrative cross-site scripting (XSS) vulnerability exists in the web user interface das…
2026-01-01
EPSS0.2%
pct 4
Select a vulnerability on the left to open the preview.