U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

National Vulnerability Database

National Vulnerability Database

NVD

Vulnerability Change Records for CVE-2020-24360

Change History

Initial Analysis 1/05/2021 10:19:23 AM

Action Type Old Value New Value
Added CPE Configuration 

								
							
							
								
							
						
								
							
								
AND
     OR
          *cpe:2.3:o:arista:eos:*:*:*:*:*:*:*:* versions from (including) 4.22.0f up to (including) 4.22.6m
          *cpe:2.3:o:arista:eos:*:*:*:*:*:*:*:* versions from (including) 4.23.0f up to (including) 4.23.4m
          *cpe:2.3:o:arista:eos:*:*:*:*:*:*:*:* versions from (including) 4.24.0f up to (including) 4.24.2.4f
     OR
          cpe:2.3:h:arista:7280cr2ak-30:-:*:*:*:*:*:*:*
          cpe:2.3:h:arista:7280cr2k-60:-:*:*:*:*:*:*:*
          cpe:2.3:h:arista:7280cr3-32d4:-:*:*:*:*:*:*:*
          cpe:2.3:h:arista:7280cr3-32p4:-:*:*:*:*:*:*:*
          cpe:2.3:h:arista:7280cr3-96:-:*:*:*:*:*:*:*
          cpe:2.3:h:arista:7280cr3k-32d4:-:*:*:*:*:*:*:*
          cpe:2.3:h:arista:7280cr3k-32p4:-:*:*:*:*:*:*:*
          cpe:2.3:h:arista:7280cr3k-96:-:*:*:*:*:*:*:*
          cpe:2.3:h:arista:7280dr3-24:-:*:*:*:*:*:*:*
          cpe:2.3:h:arista:7280dr3k-24:-:*:*:*:*:*:*:*
          cpe:2.3:h:arista:7280pr3-24:-:*:*:*:*:*:*:*
          cpe:2.3:h:arista:7280pr3k-24:-:*:*:*:*:*:*:*
          cpe:2.3:h:arista:7280sr3-48yc8:-:*:*:*:*:*:*:*
          cpe:2.3:h:arista:7280sr3k-48yc8:-:*:*:*:*:*:*:*
          cpe:2.3:h:arista:7500r3-24d:-:*:*:*:*:*:*:*
          cpe:2.3:h:arista:7500r3-24p:-:*:*:*:*:*:*:*
          cpe:2.3:h:arista:7500r3-36cq:-:*:*:*:*:*:*:*
          cpe:2.3:h:arista:7500r3k-36cq:-:*:*:*:*:*:*:*
          cpe:2.3:h:arista:7504r3:-:*:*:*:*:*:*:*
          cpe:2.3:h:arista:7508r3:-:*:*:*:*:*:*:*
          cpe:2.3:h:arista:7512r3:-:*:*:*:*:*:*:*
          cpe:2.3:h:arista:7800r3-36p:-:*:*:*:*:*:*:*
          cpe:2.3:h:arista:7800r3-48cq:-:*:*:*:*:*:*:*
          cpe:2.3:h:arista:7800r3k-48cq:-:*:*:*:*:*:*:*
          cpe:2.3:h:arista:7804r3:-:*:*:*:*:*:*:*
          cpe:2.3:h:arista:7808r3:-:*:*:*:*:*:*:*

								
								
					

					

						Added
						CVSS V2
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
NIST (AV:A/AC:L/Au:N/C:N/I:N/A:C)

								
								
					

					

						Added
						CVSS V3.1
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
NIST AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

								
								
					

					

						Added
						CWE
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
NIST CWE-404

								
								
					

					

						Changed
						Reference Type
						
							
							
								
							
								
https://www.arista.com/en/support/advisories-notices/security-advisories/11999-security-advisory-59 No Types Assigned

								
							
							
								
							
						
								
							
								
https://www.arista.com/en/support/advisories-notices/security-advisories/11999-security-advisory-59 Exploit, Vendor Advisory