Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools

7280dr3a-36

Source -

NVD

CNA CVEs -

0

ADP CVEs -

0

CISA CVEs -

0

NVD CVEs -

3
Related CVEsRelated VendorsRelated AssignersReports
3Vulnerabilities found
CVE-2026-7473
Assigner-Arista Networks, Inc.
ShareView Details
Assigner-Arista Networks, Inc.
CVSS Score-6.9||MEDIUM
EPSS-22.47% / 95.96%
||
7 Day CHG~0.00%
Published-05 Jun, 2026 | 16:22
Updated-10 Jun, 2026 | 03:57
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Known KEV||Action Due Date - 2026-06-23||Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
Arista EOS Unexpected Tunnel Protocol Decapsulation and Forwarding Bypass

On affected platforms running Arista EOS where a tunnel decapsulation configuration—such as VXLAN (Virtual Extensible LAN), decap-groups, or a GRE (Generic Routing Encapsulation) tunnel interface—is present, the switch will incorrectly decapsulate and forward other unexpected tunneled packet with a destination IP matching its configured decapsulation IP. This occurs because the switch does not verify the tunnel protocol type, potentially leading to the unexpected processing of non-configured tunnel traffic. This issue has been reported as being exploited in the wild.

Action-Not Available
Vendor-AristaArista Networks, Inc.
Product-7280cr3am-48d67020srg-24c27512r37800r3k-72y7280cr2k-607280sr2-48yc67280cr3am-24d127289r3am-sc7800r3a-36d7280cr3ak-48d67508r-fm7280sra-48c6-m7280cr2m-307280dr3a-547800r3k-48cqms7280sr2-48yc6-m7800r3ak-36dm7280tr-48c67280sr2a-48yc67280cr3a-727808r37516-sup27500r3-36cq7280cr2a-307500r3-24p7500r2a-36cq-lc7280dr3ak-547516n-ch7500r-36q-lc7280srm-40cx27280cr3-36s7280tra-48c67280cr3a-48d67800r3-36d7280cr3mk-32d4s7020tra-487500r2m-36cq-lc7800r3a-36dm7280qra-c36s7289r3a-sc7020sr-32c27280qra-c36sm7800r3a-36pm7508r37280sra-48c67280cr3am-727500r2ak-36cq-lc7289r3ak-sc7500r2am-36cq-lc7280cr2a-607816lr37500rm-36cq-lc7500r-48s2cq-lc7812r37020sr-24c27800r3a-36p7280cr-487800r3ak-36pm7816r37500r3-24d7280sr2k-48c6-m7280cr3mk-32p4s7280sr3-40yc67020tr-487280pr3-247500r3k-48y4d7280qr-c727500r-36cq-lceos7280dr3am-367512r-fm7280cr2-607280cr3ak-24d127280sram-48c67516r-fm7800r3-48cq7804r37280tr3-40c67504r37280cr2k-307280dr3am-547280sr3-48yc87500r2ak-48ycq-lc7280qr-c367280cr3ak-727280cr3-32p47280dr3a-367280sr-48c67280dr3-247504r-fm7500r-8cfpx-lc7280qr-c36-m7280sr3m-48yc87500r3k-36cq7800r3k-48cq7280cr3-967280dr3ak-367280tra-48c6-m7280cr3-32d47280sr2a-48yc6-m7500r2-36cq-lc7280cr3a-24d12EOSExtensible Operating System
CWE ID-CWE-1023
Incomplete Comparison with Missing Factors
CVE-2023-3646
Assigner-Arista Networks, Inc.
ShareView Details
Assigner-Arista Networks, Inc.
CVSS Score-5.9||MEDIUM
EPSS-0.18% / 39.96%
||
7 Day CHG~0.00%
Published-29 Aug, 2023 | 16:31
Updated-30 Sep, 2024 | 17:44
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
On affected platforms running Arista EOS with mirroring to multiple destinations configured, an internal system error may trigger a kernel panic and cause system reload.

On affected platforms running Arista EOS with mirroring to multiple destinations configured, an internal system error may trigger a kernel panic and cause system reload.

Action-Not Available
Vendor-Arista Networks, Inc.
Product-7280dr3am-367280dr3a-547280dr3-247800r3a-36pm7504r37800r3ak-36dm7289r3a-sc7812r37289r3ak-sc7280dr3ak-367500r3-36cq7500r3-24d7500r3-24p7800r3k-48cq7800r3-48cq7800r3ak-36pm7280cr3a-727289r3am-sc7800r3k-72y7512r37800r3a-36dm7280cr3a-48d67280sr3-40yc67280dr3ak-547280cr3-967800r3a-36d7800r3a-36p7500r3k-48y4d7800r3k-48cqms7280r37800r3k-36dm7280tr3-40c67280dr3am-547500r3k-36cq7512r37280cr3-32d47280cr3-36s7508r37800r3-36p7808r37280cr3-32p47816r37280cr3a-24d127280pr3-24eos7280sr3-48yc87800r3-36d7280dr3a-36EOS
CWE ID-CWE-125
Out-of-bounds Read
CVE-2023-24548
Assigner-Arista Networks, Inc.
ShareView Details
Assigner-Arista Networks, Inc.
CVSS Score-5.3||MEDIUM
EPSS-0.06% / 19.08%
||
7 Day CHG~0.00%
Published-29 Aug, 2023 | 16:13
Updated-30 Sep, 2024 | 17:46
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
On affected platforms running Arista EOS with VXLAN configured, malformed or truncated packets received over a VXLAN tunnel and forwarded in hardware can cause egress ports to be unable to forward packets

On affected platforms running Arista EOS with VXLAN configured, malformed or truncated packets received over a VXLAN tunnel and forwarded in hardware can cause egress ports to be unable to forward packets. The device will continue to be susceptible to the issue until remediation is in place.

Action-Not Available
Vendor-Arista Networks, Inc.
Product-7280dr3am-367280dr3a-547280dr3-247800r3a-36pm7504r37800r3ak-36dm7812r37280dr3ak-367500r3-36cq7500r3-24d7500r3-24p7800r3k-48cq7800r3-48cq7800r3ak-36pm7280cr3a-727800r3k-72y7512r37800r3a-36dm7280cr3a-48d67280sr3-40yc67280dr3ak-547280cr3-967800r3a-36d7800r3a-36p7500r3k-48y4d7800r3k-48cqms7280r37800r3k-36dm7280tr3-40c67280dr3am-547500r3k-36cq7512r37280cr3-32d47280cr3-36s7508r37800r3-36p7808r37280cr3-32p47816r37280cr3a-24d127280pr3-24eos7280sr3-48yc87800r3-36d7280dr3a-36EOS
CWE ID-CWE-120
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')