CVE-2025-2796

Name of the Vulnerable Software and Affected Versions Arista EOS (affected versions not specified)

Description The issue affects Arista EOS with IPsec enabled and anti-replay protection configured on platforms with hardware IPSec support. In specific cases, EOS may exhibit unexpected behavior, where received duplicate encrypted packets are forwarded instead of being dropped. This does not affect VXLANSec or MACSec encryption functionality.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.