Description
On affected platforms, restricted users could use SSH port forwarding to access host-internal services
CVSS breakdown
CVSS 3.1
Attack Vector
Network
Attack Complexity
High
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High
Affected products
- Arista Networks / DANZ Monitoring Fabric0 – CVA 7.0
- Arista Networks / DANZ Monitoring Fabric0 – 0
- Arista Networks / DANZ Monitoring Fabric0 – DMF 8.6.1
- Arista Networks / DANZ Monitoring Fabric0 – DMF 8.5.2
- Arista Networks / DANZ Monitoring Fabric0 – CCF 6.2.4
- Arista Networks / DANZ Monitoring Fabric0 – MCD 2.4.0