Description
An encrypted password command injection vulnerability exists in the Captive Portal application framework of Arista Edge Threat Management - Arista Next Generation Firewall (NGFW). This issue uniquely affects version 17.4.0; earlier software releases are not exposed.
Published: 2026-06-05
Score: 7 High
EPSS: 10.2% Moderate
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability is an encrypted password command injection within the Captive Portal application framework of Arista Edge Threat Management NGFW. It allows an attacker who can influence the password handling process to inject commands, potentially causing unintended behavior. The weakness is classified as CWE-78.

Affected Systems

Arista Edge Threat Management – Arista Next Generation Firewall. The issue uniquely affects NGFW version 17.4.0; earlier releases are not exposed.

Risk and Exploitability

The CVSS score of 7 indicates a moderate to high severity. The EPSS score of 10% indicates a moderate probability of exploitation, making the likelihood of exploitation moderate. The vulnerability is not listed in the CISA KEV catalog. Based on the description, it is inferred that the attack vector is network-based, targeting the Captive Portal configuration interface, which is typically reachable from trusted administrative networks.

Generated by OpenCVE AI on June 24, 2026 at 12:13 UTC.

Remediation

Vendor Solution

The recommended resolution is to upgrade to NGFW Version 17.4.1 at your earliest convenience.

Vendor Workaround

If managing an active NGFW 17.4.0 deployment, disable the Captive Portal Basic Login configuration profile parameter.

OpenCVE Recommended Actions

  • Upgrade the NGFW to version 17.4.1 as soon as possible.
  • If an upgrade cannot be performedive Portal Basic Login configuration profile parameter to remove the injection point.
  • Restrict access to the Captive Portal configuration interface to trusted administrators only.
  • Monitor logs for anomalous command activity and apply any additional patches when available.

Generated by OpenCVE AI on June 24, 2026 at 12:13 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Mon, 08 Jun 2026 19:30:00 +0000

Type Values Removed Values Added
First Time appeared Arista ng Firewall
CPEs cpe:2.3:a:arista:ng_firewall:17.4:*:*:*:*:*:*:*
Vendors & Products Arista ng Firewall

Sun, 07 Jun 2026 11:30:00 +0000

Type Values Removed Values Added
First Time appeared Arista
Arista edge Threat Management
Vendors & Products Arista
Arista edge Threat Management

Fri, 05 Jun 2026 21:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Fri, 05 Jun 2026 20:15:00 +0000

Type Values Removed Values Added
Description An encrypted password command injection vulnerability exists in the Captive Portal application framework of Arista Edge Threat Management - Arista Next Generation Firewall (NGFW). This issue uniquely affects version 17.4.0; earlier software releases are not exposed.
Title Arista Edge Threat Management NGFW Captive Portal Encrypted Password Command Injection
Weaknesses CWE-78
References
Metrics cvssV3_1

{'score': 6, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:L'}

cvssV4_0

{'score': 7, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:L/VA:L/SC:L/SI:L/SA:L/S:P'}

Subscriptions

Arista Edge Threat Management Ng Firewall
cve-icon MITRE

Status: PUBLISHED

Assigner: Arista

Published:

Updated: 2026-06-05T20:23:31.151Z

Reserved: 2026-02-03T22:23:04.359Z

Link: CVE-2026-25620

cve-icon Vulnrichment

Updated: 2026-06-05T20:23:28.256Z

cve-icon NVD

Status : Analyzed

Published: 2026-06-05T20:17:30.447

Modified: 2026-06-08T19:15:23.813

Link: CVE-2026-25620

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-24T12:15:05Z

Weaknesses
  • CWE-78

    Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')