CVE-2021-28510
published 2023-01-26CVE-2021-28510: For certain systems running EOS, a Precision Time Protocol (PTP) packet of a management/signaling message with an invalid Type-Length-Value (TLV) causes the…
PriorityP337high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
EPSS
1.00%
58.6th percentile
For certain systems running EOS, a Precision Time Protocol (PTP) packet of a management/signaling message with an invalid Type-Length-Value (TLV) causes the PTP agent to restart. Repeated restarts of the service will make the service unavailable.
Affected
11 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| arista | eos | < 4.23.10 | 4.23.10 |
| arista | eos | >= 4.24.0 < 4.24.8 | 4.24.8 |
| arista | eos | >= 4.25.0 < 4.25.6 | 4.25.6 |
| arista | eos | >= 4.26.0 < 4.26.4 | 4.26.4 |
| arista | eos | >= 4.27.0 < 4.27.1 | 4.27.1 |
| arista_networks | eos | — | — |
| arista_networks | eos | 4.23.10 – 4.23.0 | — |
| arista_networks | eos | 4.24.8 – 4.24.0 | — |
| arista_networks | eos | 4.25.6 – 4.25.0 | — |
| arista_networks | eos | 4.26.4 – 4.26.0 | — |
| arista_networks | eos | 4.27.1 – 4.27.0 | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2023-01-26
Published