CVE-2024-6858
published 2026-06-04CVE-2024-6858: In Arista’s EOS when in 802.1X mode, multi-auth unauthenticated hosts might be allowed access to a switch port if there exists an EAPOL capable device in the…
PriorityP432medium6.5CVSS 3.1
AVAACLPRNUINSUCNIHAN
EPSS
0.14%
4.0th percentile
In Arista’s EOS when in 802.1X mode, multi-auth unauthenticated hosts might be allowed access to a switch port if there exists an EAPOL capable device in the fallback VLAN.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| arista_networks | eos | 4.28.10 – 4.28.10.1M | — |
| arista_networks | eos | 4.29.0 – 4.29.7M | — |
| arista_networks | eos | 4.30.0 – 4.30.5M | — |
| arista_networks | eos | 4.31.0 – 4.31.1F | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
In Arista’s EOS when in 802.1X mode, multi-auth unauthenticated hosts might be allowed access to a switch port if there exists an EAPOL capable device in the fallback VLAN.
ghsa_unreviewed·2026-06-05
CVE-2024-6858 [MEDIUM] CWE-1287 In Arista’s EOS when in 802.1X mode, multi-auth unauthenticated hosts might be allowed access to a switch port if there exists an EAPOL capable device in the fallback VLAN.
In Arista’s EOS when in 802.1X mode, multi-auth unauthenticated hosts might be allowed access to a switch port if there exists an EAPOL capable device in the fallback VLAN.
VulDB
Arista EOS up to 4.28.10.1M/4.29.7M/4.30.5M/4.31.1F 802.1X Mode improper validation of specified type of input
vuldb·2026-06-05
CVE-2024-6858 [CRITICAL] Arista EOS up to 4.28.10.1M/4.29.7M/4.30.5M/4.31.1F 802.1X Mode improper validation of specified type of input
A vulnerability was found in Arista EOS up to 4.28.10.1M/4.29.7M/4.30.5M/4.31.1F and classified as critical. This affects an unknown part of the component 802.1X Mode. Such manipulation leads to improper validation of specified type of input.
This vulnerability is traded as CVE-2024-6858. Access to the local network is required for this attack to succeed. There is no exploit available.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2026-06-04
Published