cbcvebase.
CVE-2025-1260
published 2025-03-04

CVE-2025-1260: On affected platforms running Arista EOS with OpenConfig configured, a gNOI request can be run when it should have been rejected. This issue can result in…

PriorityP347critical9.1CVSS 3.1
AVNACLPRHUINSCCHIHAH
EPSS
0.41%
32.5th percentile
On affected platforms running Arista EOS with OpenConfig configured, a gNOI request can be run when it should have been rejected. This issue can result in unexpected configuration/operations being applied to the switch.

Affected

7 ranges
VendorProductVersion rangeFixed in
arista_networkseos4.28.0 – 4.28.12
arista_networkseos4.29.0 – 4.29.9
arista_networkseos4.30.0 – 4.30.8
arista_networkseos4.31.0 – 4.31.5
arista_networkseos4.32.0 – 4.32.3
arista_networkseos4.33.0 – 4.33.1
msrcazl3_mozjs_102.15.1-1_on_azure_linux_3.0

CVSS provenance

nvdv3.19.1CRITICALCVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
vendor_msrc9.8CRITICAL
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.