CVE-2023-24548

Name of the Vulnerable Software and Affected Versions Arista EOS (affected versions not specified)

Description The issue occurs when malformed or truncated packets are received over a VXLAN tunnel and forwarded in hardware on affected platforms running Arista EOS with VXLAN configured. This can cause egress ports to be unable to forward packets. The device remains susceptible to the issue until remediation is in place. The issue was discovered in an Arista customer environment, but there is no awareness of any malicious uses of this issue in customer networks.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.