CVE-2025-8872

Name of the Vulnerable Software and Affected Versions Arista EOS (affected versions not specified)

Description A specially crafted packet can cause high CPU utilization in the OSPFv3 process on affected platforms running Arista EOS with OSPFv3 configured. This may lead to the restart of the OSPFv3 process and disruption of OSPFv3 routes on the switch. The issue was discovered internally by Arista and there is no known malicious use in customer networks.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.