{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-17T11:38:46.916","vulnerabilities":[{"cve":{"id":"CVE-2021-28505","sourceIdentifier":"psirt@arista.com","published":"2022-04-14T21:15:08.427","lastModified":"2024-11-21T05:59:47.940","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"On affected Arista EOS platforms, if a VXLAN match rule exists in an IPv4 access-list that is applied to the ingress of an L2 or an L3 port/SVI, the VXLAN rule and subsequent ACL rules in that access list will ignore the specified IP protocol."},{"lang":"es","value":"En las plataformas Arista EOS afectadas, si se presenta una regla de coincidencia VXLAN en una lista de acceso IPv4 que es aplicada a la entrada de un puerto/SVI L2 o L3, la regla VXLAN y las reglas ACL posteriores en esa lista de acceso ignorarán el protocolo IP especificado"}],"metrics":{"cvssMetricV31":[{"source":"psirt@arista.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":3.6},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:N/I:P/A:N","baseScore":5.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"psirt@arista.com","type":"Secondary","description":[{"lang":"en","value":"CWE-284"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-863"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:arista:eos:*:*:*:*:*:*:*:*","versionStartIncluding":"4.26","versionEndExcluding":"4.26.4m","matchCriteriaId":"2A8E9397-1B74-4A40-B8E3-7088A5A45749"},{"vulnerable":true,"criteria":"cpe:2.3:o:arista:eos:*:*:*:*:*:*:*:*","versionStartIncluding":"4.27","versionEndExcluding":"4.27.1f","matchCriteriaId":"F85F865B-F425-46DD-B9D4-C96AE100F39F"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:arista:ccs-710p-12:-:*:*:*:*:*:*:*","matchCriteriaId":"3671762A-7E5C-47BF-AE10-64F19C82EEDF"},{"vulnerable":false,"criteria":"cpe:2.3:h:arista:ccs-710p-16p:-:*:*:*:*:*:*:*","matchCriteriaId":"AC8C4306-2090-4170-B316-79613AA19392"},{"vulnerable":false,"criteria":"cpe:2.3:h:arista:ccs-720xp-24y6:-:*:*:*:*:*:*:*","matchCriteriaId":"45460268-9775-4047-B36D-1A62480047C7"},{"vulnerable":false,"criteria":"cpe:2.3:h:arista:ccs-720xp-24zy4:-:*:*:*:*:*:*:*","matchCriteriaId":"7A3886D9-AB47-4E4B-95E6-39E31100FE62"},{"vulnerable":false,"criteria":"cpe:2.3:h:arista:ccs-720xp-48y6:-:*:*:*:*:*:*:*","matchCriteriaId":"4D21D207-AD0F-4745-B123-A7219DD6512F"},{"vulnerable":false,"criteria":"cpe:2.3:h:arista:ccs-720xp-48zc2:-:*:*:*:*:*:*:*","matchCriteriaId":"B317039B-7365-4348-8286-39128C4B363F"},{"vulnerable":false,"criteria":"cpe:2.3:h:arista:ccs-720xp-96zc2:-:*:*:*:*:*:*:*","matchCriteriaId":"2E58B31B-C6C1-4EDC-8D4F-1528C9B1CB8A"},{"vulnerable":false,"criteria":"cpe:2.3:h:arista:ccs-722xpm-48y4:-:*:*:*:*:*:*:*","matchCriteriaId":"074CBF00-1D2C-4388-874A-62453B1D4564"},{"vulnerable":false,"criteria":"cpe:2.3:h:arista:ccs-722xpm-48zy8:-:*:*:*:*:*:*:*","matchCriteriaId":"D15C1D00-5F35-4F67-8075-D84D3BD9CE73"},{"vulnerable":false,"criteria":"cpe:2.3:h:arista:dcs-7010tx-48:-:*:*:*:*:*:*:*","matchCriteriaId":"9CB43CD4-C96F-483C-B743-3D81C9A65EDF"},{"vulnerable":false,"criteria":"cpe:2.3:h:arista:dcs-7050cx3-32s:-:*:*:*:*:*:*:*","matchCriteriaId":"E7C133EA-753A-4770-AEF8-11AC8E901F1A"},{"vulnerable":false,"criteria":"cpe:2.3:h:arista:dcs-7050cx3m-32s:-:*:*:*:*:*:*:*","matchCriteriaId":"5D11D6B9-1E68-4A65-A9CD-8DD299EC6B25"},{"vulnerable":false,"criteria":"cpe:2.3:h:arista:dcs-7050sx3-48c8:-:*:*:*:*:*:*:*","matchCriteriaId":"11B7A876-587F-4C51-BE49-C82F6508C536"},{"vulnerable":false,"criteria":"cpe:2.3:h:arista:dcs-7050sx3-48yc12:-:*:*:*:*:*:*:*","matchCriteriaId":"EEB629B5-7E62-4972-A288-EF76FFA3E441"},{"vulnerable":false,"criteria":"cpe:2.3:h:arista:dcs-7050sx3-48yc8:-:*:*:*:*:*:*:*","matchCriteriaId":"33079D44-2255-4682-A4BC-4B071D8EDCFA"},{"vulnerable":false,"criteria":"cpe:2.3:h:arista:dcs-7050sx3-96yc8:-:*:*:*:*:*:*:*","matchCriteriaId":"69F1C5CA-19D7-4F40-93EB-97F44DCD5DCB"},{"vulnerable":false,"criteria":"cpe:2.3:h:arista:dcs-7050tx3-48c8:-:*:*:*:*:*:*:*","matchCriteriaId":"418E2ED9-B9FC-438D-9F7C-8D6DB7E297AA"}]}]}],"references":[{"url":"https://www.arista.com/en/support/advisories-notices/security-advisories/15267-security-advisory-0073","source":"psirt@arista.com","tags":["Exploit","Vendor Advisory"]},{"url":"https://www.arista.com/en/support/advisories-notices/security-advisories/15267-security-advisory-0073","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit","Vendor Advisory"]}]}}]}