A user with administrator privileges can perform command injection
Fixes

Solution

The recommended resolution for all issues documented above is to upgrade to the version indicated below at your earliest convenience. * 17.2 Upgrade


Workaround

No known mitigation.

History

Mon, 29 Sep 2025 12:45:00 +0000

Type Values Removed Values Added
First Time appeared Arista
Arista ng Firewall
CPEs cpe:2.3:a:arista:ng_firewall:*:*:*:*:*:*:*:*
Vendors & Products Arista
Arista ng Firewall

Mon, 13 Jan 2025 16:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Fri, 10 Jan 2025 21:45:00 +0000

Type Values Removed Values Added
Description A user with administrator privileges can perform command injection
Title A user with administrator privileges can perform command injection
Weaknesses CWE-88
References
Metrics cvssV3_1

{'score': 7.2, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H'}


cve-icon MITRE

Status: PUBLISHED

Assigner: Arista

Published:

Updated: 2025-01-13T15:45:58.848Z

Reserved: 2024-09-23T22:00:58.758Z

Link: CVE-2024-9131

cve-icon Vulnrichment

Updated: 2025-01-13T15:45:53.748Z

cve-icon NVD

Status : Analyzed

Published: 2025-01-10T22:15:26.667

Modified: 2025-09-29T12:33:48.777

Link: CVE-2024-9131

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.