CVE-2019-18948
CVE-2019-18948 is a high-severity vulnerability in Arista Eos with a CVSS 3.x base score of 7.5. It is not currently listed as actively exploited by CISA, and its EPSS exploit-prediction score is low.
Key facts
- Severity: High (CVSS 3.x base score 7.5)
- CVSS v2: 5.0
- EPSS exploit prediction: 1% (60th percentile)
- Actively exploited: Not listed in CISA KEV
- Affected product: Arista Eos
- Published:
- Last modified:
Description
An issue was found in Arista EOS. Specific malformed ARP packets can impact the software forwarding of VxLAN packets. This issue is found in Arista’s EOS VxLAN code, which can allow attackers to crash the VxlanSwFwd agent. This affects EOS 4.21.8M and below releases in the 4.21.x train, 4.22.3M and below releases in the 4.22.x train, 4.23.1F and below releases in the 4.23.x train, and all releases in 4.15, 4.16, 4.17, 4.18, 4.19, 4.20 code train.
Frequently asked questions
- What is CVE-2019-18948?
- An issue was found in Arista EOS. Specific malformed ARP packets can impact the software forwarding of VxLAN packets. This issue is found in Arista’s EOS VxLAN code, which can allow attackers to crash the VxlanSwFwd agent. This affects EOS 4.21.8M and below releases in the 4.21.x train, 4.22.3M and below releases in the 4.22.x train, 4.23.1F and below releases in the 4.23.x train, and all releases in 4.15, 4.16, 4.17, 4.18, 4.19, 4.20 code train.
- How severe is CVE-2019-18948?
- CVE-2019-18948 has a CVSS 3.x base score of 7.5, rated high severity. It is exploitable over network with low attack complexity, requires no privileges and no user interaction. Impact on confidentiality is none, integrity none, and availability high.
- Is CVE-2019-18948 being actively exploited?
- It is not currently listed in CISA's KEV catalog. Its EPSS exploit-prediction score is 1% (60th percentile), an estimate of the probability of exploitation in the next 30 days.
- What products are affected by CVE-2019-18948?
- CVE-2019-18948 primarily affects Arista Eos. In total, 7 product configurations (CPEs) are listed as vulnerable; see the affected-products list for the exact versions.
- How do I fix CVE-2019-18948?
- Review the linked vendor and NVD advisories for patched versions and mitigations, then upgrade or apply the recommended workaround. Given its high severity, prioritise patching exposed systems.
- When was CVE-2019-18948 published?
- CVE-2019-18948 was published on 2020-04-16 and last updated on 2026-06-17.
References
Affected products (7)
- cpe:2.3:o:arista:eos:*:*:*:*:*:*:*:*
- cpe:2.3:o:arista:eos:4.15:*:*:*:*:*:*:*
- cpe:2.3:o:arista:eos:4.16:*:*:*:*:*:*:*
- cpe:2.3:o:arista:eos:4.17:*:*:*:*:*:*:*
- cpe:2.3:o:arista:eos:4.18:*:*:*:*:*:*:*
- cpe:2.3:o:arista:eos:4.19:*:*:*:*:*:*:*
- cpe:2.3:o:arista:eos:4.20:*:*:*:*:*:*:*
More vulnerabilities in Arista Eos
- CVE-2015-8236 — Critical (CVSS 10.0): Arista EOS before 4.11.12, 4.12 before 4.12.11, 4.13 before 4.13.14M, 4.14 before 4.14.5FX.5, and 4.15 before…
- CVE-2020-10188 — Critical (CVSS 9.8): utility.c in telnetd in netkit telnet through 0.17 allows remote attackers to execute arbitrary code via short writes…
- CVE-2017-18017 — Critical (CVSS 9.8): The tcpmss_mangle_packet function in net/netfilter/xt_TCPMSS.c in the Linux kernel before 4.11, and 4.9.x before…
- CVE-2017-14491 — Critical (CVSS 9.8): Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or…
- CVE-2014-7169 — Critical (CVSS 9.8): GNU Bash through 4.3 bash43-025 processes trailing strings after certain malformed function definitions in the values…
- CVE-2014-6271 — Critical (CVSS 9.8): GNU Bash through 4.3 processes trailing strings after function definitions in the values of environment variables,…