CVE-2024-8000

Name of the Vulnerable Software and Affected Versions Arista EOS (affected versions not specified)

Description The issue occurs on platforms running Arista EOS with 802.1X configured, where certain conditions may cause a dynamic ACL received from the AAA server to only install the first line of the ACL after an Accelerated Software Upgrade (ASU) restart. This bug impacts supplicants with pending captive-portal authentication during ASU.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.