Arista Networks · Arista Eos · CVE-2025-6188
Name of the Vulnerable Software and Affected Versions:
Arista EOS (affected versions not specified)
Description:
Maliciously formed UDP packets with source port 3503 may be accepted by EOS. UDP Port 3503 is associated with LspPing Echo Reply. This can result in unexpected behaviors, especially for UDP based services that do not perform authentication.
Recommendations:
At the moment, there is no information about a newer version that contains a fix for this vulnerability.