CVE-2026-7473: Arista EOS Unexpected Tunnel Protocol Decapsulation and Forwarding Bypass

Published Jun 5, 2026
·
Updated

Arista Extensible Operating System (EOS) contains an incomplete comparison with missing factors vulnerability when the switch incorrectly decapsulate and forwards other unexpected tunneled packet with a destination IP matching its configured decapsulation IP.

Affected Software

104 affected components
Arista Networks Arista EOS
Arista Extensible Operating System
All of the following
Arista EOS
Any of the following
Arista 7020sr-24c2
Arista 7020sr-32c2
Arista 7020srg-24c2
Arista 7020tr-48
Arista 7020tra-48
Arista 7280cr-48
Arista 7280cr2-60
Arista 7280cr2a-30
Arista 7280cr2a-60
Arista 7280cr2k-30
Arista 7280cr2k-60
Arista 7280cr2m-30
Arista 7280cr3-32d4
Arista 7280cr3-32p4
Arista 7280cr3-36s
Arista 7280cr3-96
Arista 7280cr3a-24d12
Arista 7280cr3a-48d6
Arista 7280cr3a-72
Arista 7280cr3ak-24d12
Arista 7280cr3ak-48d6
Arista 7280cr3ak-72
Arista 7280cr3am-24d12
Arista 7280cr3am-48d6
Arista 7280cr3am-72
Arista 7280cr3mk-32d4s
Arista 7280cr3mk-32p4s
Arista 7280dr3-24
Arista 7280dr3a-36
Arista 7280dr3a-54
Arista 7280dr3ak-36
Arista 7280dr3ak-54
Arista 7280dr3am-36
Arista 7280dr3am-54
Arista 7280pr3-24
Arista 7280qr-c36
Arista 7280qr-c36-m
Arista 7280qr-c72
Arista 7280qra-c36s
Arista 7280qra-c36sm
Arista 7280sr-48c6
Arista 7280sr2-48yc6
Arista 7280sr2-48yc6-m
Arista 7280sr2a-48yc6
Arista 7280sr2a-48yc6-m
Arista 7280sr2k-48c6-m
Arista 7280sr3-40yc6
Arista 7280sr3-48yc8
Arista 7280sr3m-48yc8
Arista 7280sra-48c6
Arista 7280sra-48c6-m
Arista 7280sram-48c6
Arista 7280srm-40cx2
Arista 7280tr-48c6
Arista 7280tr3-40c6
Arista 7280tra-48c6
Arista 7280tra-48c6-m
Arista 7289r3a-sc
Arista 7289r3ak-sc
Arista 7289r3am-sc
Arista 7500r-36cq-lc
Arista 7500r-36q-lc
Arista 7500r-48s2cq-lc
Arista 7500r-8cfpx-lc
Arista 7500r2-36cq-lc
Arista 7500r2a-36cq-lc
Arista 7500r2ak-36cq-lc
Arista 7500r2ak-48ycq-lc
Arista 7500r2am-36cq-lc
Arista 7500r2m-36cq-lc
Arista 7500r3-24d
Arista 7500r3-24p
Arista 7500r3-36cq
Arista 7500r3k-36cq
Arista 7500r3k-48y4d
Arista 7500rm-36cq-lc
Arista 7504r-fm
Arista 7504r3
Arista 7508r-fm
Arista 7508r3
Arista 7512r-fm
Arista 7512r3
Arista 7516-sup2
Arista 7516n-ch
Arista 7516r-fm
Arista 7800r3-36d
Arista 7800r3-48cq
Arista 7800r3a-36d
Arista 7800r3a-36dm
Arista 7800r3a-36p
Arista 7800r3a-36pm
Arista 7800r3ak-36dm
Arista 7800r3ak-36pm
Arista 7800r3k-48cq
Arista 7800r3k-48cqms
Arista 7800r3k-72y
Arista 7804r3
Arista 7808r3
Arista 7812r3
Arista 7816lr3
Arista 7816r3

Remediation

Information

No software upgrade path is planned to address this issue due to the risk of breaking existing configuration on deployments. The recommended resolution of this issue is to follow the appropriate mitigation instructions detailed in the workaround block.

Information

Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

Event History

Jun 5, 2026
CVE Published
via MITRE·04:22 PM
Data Sourced
via MITRE·04:22 PM
RemedyDescriptionSeverityWeakness
Data Sourced
via NVD·05:17 PM
DescriptionSeverityWeakness
Data Sourced
via NVD·05:17 PM
Affected Software
Jun 9, 2026
Known Exploited
via CISA·12:00 AM
Data Sourced
via CISA·12:00 AM
RemedyDescriptionAffected Software
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Frequently Asked Questions

1

What is the severity of CVE-2026-7473?

The severity of CVE-2026-7473 is rated medium with a score of 5.8.

2

How does CVE-2026-7473 affect Arista EOS?

CVE-2026-7473 affects Arista EOS by causing it to unexpectedly decapsulate and forward tunneled packets, potentially leading to data exposure.

3

How do I fix CVE-2026-7473?

There is no software upgrade path for CVE-2026-7473; follow the recommended mitigation instructions provided in the workaround section.

4

What types of tunnel configurations are impacted by CVE-2026-7473?

CVE-2026-7473 impacts tunnel configurations such as VXLAN, decap-groups, and GRE tunnel interfaces.

5

Is there a workaround for CVE-2026-7473?

Yes, the recommended resolution for CVE-2026-7473 is to implement the appropriate mitigation instructions as detailed in the advisory.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203