CVE-2023-24511

CVSS V2 None CVSS V3 None
Description
On affected platforms running Arista EOS with SNMP configured, a specially crafted packet can cause a memory leak in the snmpd process. This may result in the snmpd processing being terminated (causing SNMP requests to time out until snmpd is automatically restarted) and potential memory resource exhaustion for other processes on the switch. The vulnerability does not have any confidentiality or integrity impacts to the system.
Overview
  • CVE ID
  • CVE-2023-24511
  • Assigner
  • psirt@arista.com
  • Vulnerability Status
  • Analyzed
  • Published Version
  • 2023-04-12T21:15:16
  • Last Modified Date
  • 2023-04-21T14:27:47
Weakness Enumerations
CWE URL
CWE-401 http://cwe.mitre.org/data/definitions/401.html
CPE Configuration (Product)
CPE Vulnerable Operator Version Start Version End
AND
cpe:2.3:o:arista:eos:*:*:*:*:*:*:*:* 1 OR 4.26.0 4.26.10m
cpe:2.3:o:arista:eos:*:*:*:*:*:*:*:* 1 OR 4.27.0 4.27.9m
cpe:2.3:o:arista:eos:*:*:*:*:*:*:*:* 1 OR 4.28.0 4.28.6m
cpe:2.3:o:arista:eos:*:*:*:*:*:*:*:* 1 OR 4.29.0 4.29.2f
cpe:2.3:a:arista:ceos-lab:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:a:arista:cloudeos:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:a:arista:veos-lab:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7010t:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7010t-48:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7010tx-48:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7010tx-48-dc:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7020sr-24c2:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7020sr-32c2:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7020tr-48:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7020tra-48:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7050cx3-32s:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7050cx3m-32s:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7050qx-32s:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7050qx2-32s:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7050sx-128:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7050sx-64:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7050sx-72q:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7050sx2-128:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7050sx2-72q:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7050sx3-48c8:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7050sx3-48yc:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7050sx3-48yc12:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7050sx3-48yc8:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7050sx3-96yc8:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7050tx-48:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7050tx-64:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7050tx-72q:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7050tx2-128:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7050tx3-48c8:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7060cx-32s:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7060cx2-32s:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7060dx4-32:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7060px4-32:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7060sx2-48yc6:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7150s-24:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7150s-52:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7150s-64:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7150sc-24:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7150sc-64:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7160-32cq:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7160-48tc6:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7160-48yc6:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7170-32c:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7170-32cd:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7170-64c:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7170b-64c:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:720df-48y:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:720dp-24s:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:720dp-48s:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:720dt-24s:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:720dt-48s:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:720dt-48y:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:720xp-24y6:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:720xp-24zy4:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:720xp-48y6:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:720xp-48zc2:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:720xp-96zc2:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:722xpm-48y4:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:722xpm-48zy8:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7250qx-64:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7260cx:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7260cx3:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7260cx3-64:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7260qx:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7260qx-64:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7280cr2ak-30:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7280cr2k-60:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7280cr3-32d4:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7280cr3-32p4:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7280cr3-96:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7280cr3k-32d4:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7280cr3k-32p4:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7280cr3k-96:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7280dr3-24:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7280dr3k-24:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7280e:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7280pr3-24:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7280pr3k-24:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7280r:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7280r2:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7280r3:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7280sr3-48yc8:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7280sr3k-48yc8:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7300x-32q:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7300x-64s:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7300x-64t:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7300x3-32c:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7300x3-48yc4:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7304:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7308:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7316:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7320x-32c:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7368x4:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7388x5:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7500e:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7500r:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7500r2:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7500r3:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7500r3-24d:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7500r3-24p:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7500r3-36cq:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7500r3k-36cq:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7800r3-36p:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7800r3-48cq:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:7800r3k-48cq:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:ccs-750x-48thp:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:ccs-750x-48tp:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:ccs-750x-48zp:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:arista:ccs-750x-48zxp:-:*:*:*:*:*:*:* 0 OR
References
Reference URL Reference Tags
https://www.arista.com/en/support/advisories-notices/security-advisory/17239-security-advisory-0084
Sources
Source Name Source URL
NIST https://nvd.nist.gov/vuln/detail/CVE-2023-24511
MITRE https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-24511
History
Created Old Value New Value Data Type Notes
2023-04-17 04:38:12 Added to TrackCVE
2023-04-17 04:38:15 Weakness Enumeration new
2023-04-18 15:00:26 Awaiting Analysis Undergoing Analysis Vulnerability Status updated
2023-04-21 15:00:55 2023-04-21T14:27:47 CVE Modified Date updated
2023-04-21 15:00:55 Undergoing Analysis Analyzed Vulnerability Status updated
2023-04-21 15:01:01 CPE Information updated