VDB

GCVE-110-NCSC-2025-374

GCVE-110-NCSC-2025-374
Advisory PublishedCVSS 6.5/10
Vulnetix · Advisory published November 20, 2025
The EOS switch and CVX server are susceptible to crashes and denial of service due to vulnerabilities in handling malformed messages, which can be exploited by high privilege attackers.

Weaknesses (CWE)

CWE-1286Improper Validation of Syntactic Correctness of InputCWE-20Improper Input Validation

Risk Scores

CVSS 3.1
6.5/10
Medium · CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected Products

VendorProductVersionsPlatforms
Arista Networksvers:unknown/*

References

advisory
advisory
advisory
advisory
advisory
advisory
advisory

Browse GCVE Records

73,161 records in the GCVE database · Updated July 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›