PT-2026-47048 · Arista Networks · Arista Edge Threat Management - Arista Next Generation Firewall
Published
2026-06-05
·
Updated
2026-06-05
·
CVE-2026-25623
CVSS v3.1
6.0
Medium
| Vector | AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:L |
An input validation command execution vulnerability exists in the browser management pipeline of Arista Edge Threat Management - Arista Next Generation Firewall (NGFW). Authenticated administrators can leverage this exposure to obtain underlying terminal script code processing execution permissions.
Fix
OS Command Injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Arista Edge Threat Management - Arista Next Generation Firewall