Expired and unusable administrator authentication tokens can be revealed by units that have timed out from ETM access
Fixes

Solution

The recommended resolution for all issues documented above is to upgrade to the version indicated below at your earliest convenience. * 17.2 Upgrade


Workaround

After you have completed NGFW operations with Remote Access, close the browser window or tab.

History

Mon, 29 Sep 2025 12:30:00 +0000

Type Values Removed Values Added
First Time appeared Arista
Arista ng Firewall
CPEs cpe:2.3:a:arista:ng_firewall:*:*:*:*:*:*:*:*
Vendors & Products Arista
Arista ng Firewall

Mon, 13 Jan 2025 21:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Fri, 10 Jan 2025 22:00:00 +0000

Type Values Removed Values Added
Description Expired and unusable administrator authentication tokens can be revealed by units that have timed out from ETM access
Title Expired and unusable administrator authentication tokens can be revealed by units that have timed out from ETM access
Weaknesses CWE-1230
References
Metrics cvssV3_1

{'score': 6.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:L/A:L'}


cve-icon MITRE

Status: PUBLISHED

Assigner: Arista

Published:

Updated: 2025-01-13T20:13:25.964Z

Reserved: 2024-09-25T20:29:43.984Z

Link: CVE-2024-47517

cve-icon Vulnrichment

Updated: 2025-01-13T20:13:20.656Z

cve-icon NVD

Status : Analyzed

Published: 2025-01-10T22:15:25.923

Modified: 2025-09-29T12:25:57.620

Link: CVE-2024-47517

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.