Where
-Infinity
0

Trending

Last week
Last month
Last year

Arista CloudVision PortalOn affected versions of the CloudVision Portal, improper access controls could enable a malicious authenticated user to take broader actions on managed EOS devices than intended. This advisory impacts the Arista CloudVision Portal products when run on-prem

Risk 87
Severity
10
First published (updated )
CVE-2024-11186

Arista CloudVisionOn Arista CloudVision systems (virtual or physical on-premise deployments), Zero Touch Provisioning can be used to gain admin privileges on the CloudVision system, with more permissions than necessary, which can be used to query or manipulate system state

Risk 73
Severity
10
First published (updated )
CVE-2025-0505

Arista CloudVision PortalOn affected versions of the Arista CloudVision Portal (CVP on-prem), the time-bound device onboarding token can be used to gain admin privileges on CloudVision.

Risk 59
Severity
8.7
First published (updated )
CVE-2024-8100

Arista CloudVision ApplianceOn Arista CloudVision Appliance (CVA) affected releases running on appliances that support hardware disk encryption (DCA-350E-CV only), the disk encryption might not be successfully performed. This results in the disks remaining unsecured and data on them

Risk 27
Severity
4.6
First published (updated )
CVE-2024-7142

Arista CloudVision PortalOn affected versions of the CloudVision Portal improper access controls on the connection from devic…

Risk 60
Severity
8.1
First published (updated )
CVE-2023-24546
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Arista CloudVision PortalThis advisory documents an internally found vulnerability in the on premises deployment model of Arista CloudVision Portal (CVP) where under a certain set of conditions, user passwords can be leaked in the Audit and System logs. The impact of this vu ...

Risk 32
Severity
5.5
First published (updated )
CVE-2022-29071

Arista CloudVision eXchangeArista’s CloudVision eXchange (CVX) server before 4.21.12M, 4.22.x before 4.22.7M, 4.23.x before 4.2…

Risk 43
Severity
7.5
First published (updated )
CVE-2020-13100

Arista CloudVision PortalA vulnerability in Arista’s CloudVision Portal (CVP) prior to 2020.2 allows users with “read-only” o…

Risk 38
Severity
6.5
First published (updated )
CVE-2020-24333

ubuntu/libpam-tacplusIn support.c in pam_tacplus 1.3.8 through 1.5.1, the TACACS+ shared secret gets logged via syslog if…

Risk 45
Severity
7.5
First published (updated )
CVE-2020-13881

Arista CloudVision PortalIn CloudVision Portal all releases in the 2018.1 and 2018.2 Code train allows users with read-only p…

Risk 69
Severity
7.8
First published (updated )
CVE-2019-18181
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Arista CloudVision PortalIn CloudVision Portal (CVP) for all releases in the 2018.2 Train, under certain conditions, the appl…

Risk 30
Severity
4.9
First published (updated )
CVE-2019-18615

Arista CloudVision PortalArista CloudVision Portal through 2018.1.1 has Incorrect Permissions.

Risk 38
Severity
6.5
First published (updated )
CVE-2018-12357

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203