Internal Engineering

**Name of the Vulnerable Software and Affected Versions** AOS-CX versions 10.14.xxxx through 10.15.1000 **Description** A vulnerability has been identified in the port ACL functionality of AOS-CX software, which could allow an attacker to bypass ACL rules applied to routed ports on egress. This results in port ACLs not being correctly enforced, potentially leading to unauthorized traffic flow and violations of security policies. Egress VLAN ACLs and Routed VLAN ACLs are not affected by this issue. **Recommendations** For AOS-CX version 10.14.xxxx, update to a version above 10.14.xxxx to resolve the issue. For AOS-CX version 10.15.xxxx, update to a version above 10.15.1000 to resolve the issue. As a temporary workaround, consider restricting access to the vulnerable port ACL functionality until a patch is available.

**Name of the Vulnerable Software and Affected Versions** AOS-CX (affected versions not specified) **Description** Vulnerabilities in the command line interface could allow an authenticated remote attacker to expose sensitive information. Successful exploitation could allow an attacker to gain unauthorized access to services outside of the impacted switch, potentially leading to lateral movement involving those services. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.