CVE-2025-0936

Name of the Vulnerable Software and Affected Versions Arista EOS (affected versions not specified)

Description On affected platforms running Arista EOS with a gNMI transport enabled, running the gNOI File TransferToRemote RPC with credentials for a remote server may cause these remote-server credentials to be logged or accounted on the local EOS device or possibly on other remote accounting servers (i.e. TACACS, RADIUS, etc).

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.