CVE-2024-8100

Sažetak

On affected versions of the Arista CloudVision Portal (CVP on-prem), the time-bound device onboarding token can be used to gain admin privileges on CloudVision.

Reference

CVSS

Base:	8.7
Impact:	5.8
Exploitability:	2.3

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	HIGH

Impact

Povjerljivost	Cjelovitost	Dostupnost
HIGH	HIGH	NONE

CVSS vektor

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:N

Zadnje važnije ažuriranje

12-05-2025 - 17:32

Objavljeno

08-05-2025 - 19:16