nvd-json-data-feeds/CVE-2024/CVE-2024-58xx/CVE-2024-5872.json

{
  "id": "CVE-2024-5872",
  "sourceIdentifier": "psirt@arista.com",
  "published": "2025-01-10T21:15:13.367",
  "lastModified": "2025-01-10T21:15:13.367",
  "vulnStatus": "Awaiting Analysis",
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "On affected platforms running Arista EOS, a specially crafted packet with incorrect VLAN tag might be copied to CPU, which may cause incorrect control plane behavior related to the packet, such as route flaps, multicast routes learnt, etc."
    },
    {
      "lang": "es",
      "value": "En las plataformas afectadas que ejecutan Arista EOS, es posible que se copie en la CPU un paquete especialmente manipulado con una etiqueta VLAN incorrecta, lo que puede provocar un comportamiento incorrecto del plano de control relacionado con el paquete, como fluctuaciones de ruta, rutas de multidifusi\u00f3n aprendidas, etc."
    }
  ],
  "metrics": {
    "cvssMetricV31": [
      {
        "source": "psirt@arista.com",
        "type": "Secondary",
        "cvssData": {
          "version": "3.1",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L",
          "baseScore": 6.5,
          "baseSeverity": "MEDIUM",
          "attackVector": "NETWORK",
          "attackComplexity": "LOW",
          "privilegesRequired": "NONE",
          "userInteraction": "NONE",
          "scope": "UNCHANGED",
          "confidentialityImpact": "NONE",
          "integrityImpact": "LOW",
          "availabilityImpact": "LOW"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 2.5
      }
    ]
  },
  "references": [
    {
      "url": "https://www.arista.com/en/support/advisories-notices/security-advisory/20649-security-advisory-0106",
      "source": "psirt@arista.com"
    }
  ]
}
Auto-Update: 2025-01-10T23:00:21.119750+00:00 2025-01-10 23:03:47 +00:00			`{`
			`"id": "CVE-2024-5872",`
			`"sourceIdentifier": "psirt@arista.com",`
			`"published": "2025-01-10T21:15:13.367",`
			`"lastModified": "2025-01-10T21:15:13.367",`
Auto-Update: 2025-01-19T03:00:20.175811+00:00 2025-01-19 03:03:47 +00:00			`"vulnStatus": "Awaiting Analysis",`
Auto-Update: 2025-01-10T23:00:21.119750+00:00 2025-01-10 23:03:47 +00:00			`"cveTags": [],`
			`"descriptions": [`
			`{`
			`"lang": "en",`
			`"value": "On affected platforms running Arista EOS, a specially crafted packet with incorrect VLAN tag might be copied to CPU, which may cause incorrect control plane behavior related to the packet, such as route flaps, multicast routes learnt, etc."`
Auto-Update: 2025-01-19T03:00:20.175811+00:00 2025-01-19 03:03:47 +00:00			`},`
			`{`
			`"lang": "es",`
			`"value": "En las plataformas afectadas que ejecutan Arista EOS, es posible que se copie en la CPU un paquete especialmente manipulado con una etiqueta VLAN incorrecta, lo que puede provocar un comportamiento incorrecto del plano de control relacionado con el paquete, como fluctuaciones de ruta, rutas de multidifusi\u00f3n aprendidas, etc."`
Auto-Update: 2025-01-10T23:00:21.119750+00:00 2025-01-10 23:03:47 +00:00			`}`
			`],`
			`"metrics": {`
			`"cvssMetricV31": [`
			`{`
			`"source": "psirt@arista.com",`
			`"type": "Secondary",`
			`"cvssData": {`
			`"version": "3.1",`
			`"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L",`
			`"baseScore": 6.5,`
			`"baseSeverity": "MEDIUM",`
			`"attackVector": "NETWORK",`
			`"attackComplexity": "LOW",`
			`"privilegesRequired": "NONE",`
			`"userInteraction": "NONE",`
			`"scope": "UNCHANGED",`
			`"confidentialityImpact": "NONE",`
			`"integrityImpact": "LOW",`
			`"availabilityImpact": "LOW"`
			`},`
			`"exploitabilityScore": 3.9,`
			`"impactScore": 2.5`
			`}`
			`]`
			`},`
			`"references": [`
			`{`
			`"url": "https://www.arista.com/en/support/advisories-notices/security-advisory/20649-security-advisory-0106",`
			`"source": "psirt@arista.com"`
			`}`
			`]`
			`}`