CVE-2026-25620
published 2026-06-05CVE-2026-25620: An encrypted password command injection vulnerability exists in the Captive Portal application framework of Arista Edge Threat Management - Arista Next…
PriorityP347medium6CVSS 3.1
AVNACLPRHUINSUCHILAL
EPSS
10.24%
95.1th percentile
An encrypted password command injection vulnerability exists in the Captive Portal application framework of Arista Edge Threat Management - Arista Next Generation Firewall (NGFW). This issue uniquely affects version 17.4.0; earlier software releases are not exposed.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| arista | ng_firewall | — | — |
| arista_networks | arista_edge_threat_management_arista_next_generation_firewall | — | — |
CVSS provenance
nvdv3.16.0MEDIUMCVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:L
nvdv4.07.0HIGHCVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:L/VA:L/SC:L/SI:L/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:P/AU:X/R:X/V:X/RE:X/U:X
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
VulDB
Arista Edge Threat Management 17.4.0 Captive Portal Application Framework os command injection
vuldb·2026-06-06·CVSS 7.0
CVE-2026-25620 [HIGH] Arista Edge Threat Management 17.4.0 Captive Portal Application Framework os command injection
A vulnerability has been found in Arista Edge Threat Management 17.4.0 and classified as critical. The affected element is an unknown function of the component Captive Portal Application Framework. This manipulation causes os command injection.
This vulnerability is handled as CVE-2026-25620. The attack can be initiated remotely. There is not any exploit available.
GHSA
An encrypted password command injection vulnerability exists in the Captive Portal application framework of Arista Edge Threat Management - Arista Next Generation Firewall (NGFW).
ghsa_unreviewed·2026-06-05
CVE-2026-25620 [HIGH] CWE-78 An encrypted password command injection vulnerability exists in the Captive Portal application framework of Arista Edge Threat Management - Arista Next Generation Firewall (NGFW).
An encrypted password command injection vulnerability exists in the Captive Portal application framework of Arista Edge Threat Management - Arista Next Generation Firewall (NGFW). This issue uniquely affects version 17.4.0; earlier software releases are not exposed.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2026-06-05
Published