{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-8100", "assignerOrgId": "c8b34d1a-69ae-45c3-88fe-f3b3d44f39b7", "state": "PUBLISHED", "assignerShortName": "Arista", "dateReserved": "2024-08-22T18:18:50.804Z", "datePublished": "2025-05-08T18:31:39.114Z", "dateUpdated": "2025-05-08T18:57:09.478Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "product": "CloudVision", "vendor": "Arista Networks", "versions": [{"status": "affected", "version": "2024.3.0", "versionType": "custom"}, {"lessThanOrEqual": "2024.2", "status": "affected", "version": "2024.0", "versionType": "custom"}, {"lessThanOrEqual": "2023.3.1", "status": "affected", "version": "2023.3.0", "versionType": "custom"}, {"lessThanOrEqual": "2023.2", "status": "affected", "version": "2023.0", "versionType": "custom"}, {"status": "affected", "version": "2022", "versionType": "custom"}, {"status": "affected", "version": "2021", "versionType": "custom"}, {"status": "affected", "version": "2020", "versionType": "custom"}, {"status": "affected", "version": "2019", "versionType": "custom"}, {"status": "affected", "version": "2018", "versionType": "custom"}]}], "configurations": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "<span style=\"background-color: rgb(255, 255, 255);\">No specific configuration is required to be vulnerable to CVE-2024-8100.</span><br>"}], "value": "No specific configuration is required to be vulnerable to CVE-2024-8100."}], "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "<span style=\"background-color: rgb(255, 255, 255);\">On affected versions of the Arista CloudVision Portal (CVP on-prem), the time-bound device onboarding token can be used to gain admin privileges on CloudVision.</span><br>"}], "value": "On affected versions of the Arista CloudVision Portal (CVP on-prem), the time-bound device onboarding token can be used to gain admin privileges on CloudVision."}], "impacts": [{"capecId": "CAPEC-233", "descriptions": [{"lang": "en", "value": "CAPEC-233 Privilege Escalation"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 8.7, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:N", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-269", "description": "CWE-269 Improper Privilege Management", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "c8b34d1a-69ae-45c3-88fe-f3b3d44f39b7", "shortName": "Arista", "dateUpdated": "2025-05-08T18:31:39.114Z"}, "references": [{"url": "https://www.arista.com/en/support/advisories-notices/security-advisory/21316-security-advisory-0116"}], "solutions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "<p>The recommended resolution is to upgrade to a remediated software version at your earliest convenience. Arista recommends customers move to the latest version of each release that contains all the fixes listed below. For more information about upgrading see <a target=\"_blank\" rel=\"nofollow\" href=\"https://www.arista.com/en/support/software-download\">CVP Software downloads</a></p><div>&nbsp;</div><div>CVE-2024-8100 has been fixed in the following releases:</div><ul><li>2024.1.3 and later releases in the 2024.1.x train</li><li>2024.2.2 and later releases in the 2024.2.x train</li><li>2024.3.1 and later releases in the 2024.3.x train</li><li>2025.1.0 and later releases in the 2025.1.x train</li></ul><br>"}], "value": "The recommended resolution is to upgrade to a remediated software version at your earliest convenience. Arista recommends customers move to the latest version of each release that contains all the fixes listed below. For more information about upgrading see CVP Software downloads https://www.arista.com/en/support/software-download \n\n\u00a0\n\nCVE-2024-8100 has been fixed in the following releases:\n\n * 2024.1.3 and later releases in the 2024.1.x train\n * 2024.2.2 and later releases in the 2024.2.x train\n * 2024.3.1 and later releases in the 2024.3.x train\n * 2025.1.0 and later releases in the 2025.1.x train"}], "source": {"advisory": "116", "defect": ["BUG 994965"], "discovery": "INTERNAL"}, "title": "On affected versions of the Arista CloudVision Portal (CVP on-prem), the time-bound device onboarding token can be used to gain admin privileges on CloudVision.", "workarounds": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "<p>Best practice is for generated device onboarding tokens to be valid for a limited time duration, and for the Device Onboarding permission which allows the generation of these tokens to only be granted to trusted users.</p><p>Successful exploit generally requires one of the following:</p><ol><li>A rogue or compromised internal user with Device enrollment read/write permissions</li></ol><div>OR,</div><div>&nbsp;</div><ol><li>A valid device onboarding token that is easily accessible beyond the expected set of trusted users</li></ol><p>If all users with Device Onboarding privileges are trusted, and onboarding tokens are properly secured, then the risk of this issue is limited.</p><br>"}], "value": "Best practice is for generated device onboarding tokens to be valid for a limited time duration, and for the Device Onboarding permission which allows the generation of these tokens to only be granted to trusted users.\n\nSuccessful exploit generally requires one of the following:\n\n * A rogue or compromised internal user with Device enrollment read/write permissions\nOR,\n\n\u00a0\n\n * A valid device onboarding token that is easily accessible beyond the expected set of trusted users\nIf all users with Device Onboarding privileges are trusted, and onboarding tokens are properly secured, then the risk of this issue is limited."}], "x_generator": {"engine": "Vulnogram 0.2.0"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2025-05-08T18:56:57.041097Z", "id": "CVE-2024-8100", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-05-08T18:57:09.478Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-8100", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2025-05-08T18:56:57.041097Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-05-08T18:57:02.574Z"}}], "cna": {"title": "On affected versions of the Arista CloudVision Portal (CVP on-prem), the time-bound device onboarding token can be used to gain admin privileges on CloudVision.", "source": {"defect": ["BUG 994965"], "advisory": "116", "discovery": "INTERNAL"}, "impacts": [{"capecId": "CAPEC-233", "descriptions": [{"lang": "en", "value": "CAPEC-233 Privilege Escalation"}]}], "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 8.7, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:N", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "HIGH", "confidentialityImpact": "HIGH"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "Arista Networks", "product": "CloudVision", "versions": [{"status": "affected", "version": "2024.3.0", "versionType": "custom"}, {"status": "affected", "version": "2024.0", "versionType": "custom", "lessThanOrEqual": "2024.2"}, {"status": "affected", "version": "2023.3.0", "versionType": "custom", "lessThanOrEqual": "2023.3.1"}, {"status": "affected", "version": "2023.0", "versionType": "custom", "lessThanOrEqual": "2023.2"}, {"status": "affected", "version": "2022", "versionType": "custom"}, {"status": "affected", "version": "2021", "versionType": "custom"}, {"status": "affected", "version": "2020", "versionType": "custom"}, {"status": "affected", "version": "2019", "versionType": "custom"}, {"status": "affected", "version": "2018", "versionType": "custom"}], "defaultStatus": "unaffected"}], "solutions": [{"lang": "en", "value": "The recommended resolution is to upgrade to a remediated software version at your earliest convenience. Arista recommends customers move to the latest version of each release that contains all the fixes listed below. For more information about upgrading see CVP Software downloads https://www.arista.com/en/support/software-download \n\n\u00a0\n\nCVE-2024-8100 has been fixed in the following releases:\n\n * 2024.1.3 and later releases in the 2024.1.x train\n * 2024.2.2 and later releases in the 2024.2.x train\n * 2024.3.1 and later releases in the 2024.3.x train\n * 2025.1.0 and later releases in the 2025.1.x train", "supportingMedia": [{"type": "text/html", "value": "<p>The recommended resolution is to upgrade to a remediated software version at your earliest convenience. Arista recommends customers move to the latest version of each release that contains all the fixes listed below. For more information about upgrading see <a target=\"_blank\" rel=\"nofollow\" href=\"https://www.arista.com/en/support/software-download\">CVP Software downloads</a></p><div>&nbsp;</div><div>CVE-2024-8100 has been fixed in the following releases:</div><ul><li>2024.1.3 and later releases in the 2024.1.x train</li><li>2024.2.2 and later releases in the 2024.2.x train</li><li>2024.3.1 and later releases in the 2024.3.x train</li><li>2025.1.0 and later releases in the 2025.1.x train</li></ul><br>", "base64": false}]}], "references": [{"url": "https://www.arista.com/en/support/advisories-notices/security-advisory/21316-security-advisory-0116"}], "workarounds": [{"lang": "en", "value": "Best practice is for generated device onboarding tokens to be valid for a limited time duration, and for the Device Onboarding permission which allows the generation of these tokens to only be granted to trusted users.\n\nSuccessful exploit generally requires one of the following:\n\n * A rogue or compromised internal user with Device enrollment read/write permissions\nOR,\n\n\u00a0\n\n * A valid device onboarding token that is easily accessible beyond the expected set of trusted users\nIf all users with Device Onboarding privileges are trusted, and onboarding tokens are properly secured, then the risk of this issue is limited.", "supportingMedia": [{"type": "text/html", "value": "<p>Best practice is for generated device onboarding tokens to be valid for a limited time duration, and for the Device Onboarding permission which allows the generation of these tokens to only be granted to trusted users.</p><p>Successful exploit generally requires one of the following:</p><ol><li>A rogue or compromised internal user with Device enrollment read/write permissions</li></ol><div>OR,</div><div>&nbsp;</div><ol><li>A valid device onboarding token that is easily accessible beyond the expected set of trusted users</li></ol><p>If all users with Device Onboarding privileges are trusted, and onboarding tokens are properly secured, then the risk of this issue is limited.</p><br>", "base64": false}]}], "x_generator": {"engine": "Vulnogram 0.2.0"}, "descriptions": [{"lang": "en", "value": "On affected versions of the Arista CloudVision Portal (CVP on-prem), the time-bound device onboarding token can be used to gain admin privileges on CloudVision.", "supportingMedia": [{"type": "text/html", "value": "<span style=\"background-color: rgb(255, 255, 255);\">On affected versions of the Arista CloudVision Portal (CVP on-prem), the time-bound device onboarding token can be used to gain admin privileges on CloudVision.</span><br>", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-269", "description": "CWE-269 Improper Privilege Management"}]}], "configurations": [{"lang": "en", "value": "No specific configuration is required to be vulnerable to CVE-2024-8100.", "supportingMedia": [{"type": "text/html", "value": "<span style=\"background-color: rgb(255, 255, 255);\">No specific configuration is required to be vulnerable to CVE-2024-8100.</span><br>", "base64": false}]}], "providerMetadata": {"orgId": "c8b34d1a-69ae-45c3-88fe-f3b3d44f39b7", "shortName": "Arista", "dateUpdated": "2025-05-08T18:31:39.114Z"}}}, "cveMetadata": {"cveId": "CVE-2024-8100", "state": "PUBLISHED", "dateUpdated": "2025-05-08T18:57:09.478Z", "dateReserved": "2024-08-22T18:18:50.804Z", "assignerOrgId": "c8b34d1a-69ae-45c3-88fe-f3b3d44f39b7", "datePublished": "2025-05-08T18:31:39.114Z", "assignerShortName": "Arista"}, "dataVersion": "5.1"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "On affected versions of the Arista CloudVision Portal (CVP on-prem), the time-bound device onboarding token can be used to gain admin privileges on CloudVision."}, {"lang": "es", "value": "En las versiones afectadas de Arista CloudVision Portal (CVP local), el token de incorporaci\u00f3n de dispositivo con l\u00edmite de tiempo se puede usar para obtener privilegios de administrador en CloudVision."}], "id": "CVE-2024-8100", "lastModified": "2025-05-12T17:32:52.810", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 8.7, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:N", "version": "3.1"}, "exploitabilityScore": 2.3, "impactScore": 5.8, "source": "psirt@arista.com", "type": "Secondary"}]}, "published": "2025-05-08T19:16:01.183", "references": [{"source": "psirt@arista.com", "url": "https://www.arista.com/en/support/advisories-notices/security-advisory/21316-security-advisory-0116"}], "sourceIdentifier": "psirt@arista.com", "vulnStatus": "Awaiting Analysis", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-269"}], "source": "psirt@arista.com", "type": "Secondary"}]}

{}

{}