CVE-2025-2826
Last modified
CVE-2025-2826 is a low-severity vulnerability rated 2.6/10 on the CVSS scale. n affected platforms running Arista EOS, ACL policies may not be enforced. IPv4 ingress ACL, MAC ingress ACL, or IPv6 standard ingress ACL enabled on one or more ethernet or LAG interfaces may result in ACL policies not being enforced for ingress packets. EPSS estimates a 0.47% chance of exploitation in the next 30 days.
Description
n affected platforms running Arista EOS, ACL policies may not be enforced. IPv4 ingress ACL, MAC ingress ACL, or IPv6 standard ingress ACL enabled on one or more ethernet or LAG interfaces may result in ACL policies not being enforced for ingress packets. This can cause incoming packets to incorrectly be allowed or denied. The two symptoms of this issue on the affected release and platform are: * Packets which should be permitted may be dropped and, * Packets which should be dropped may be permitted.
Metrics
CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N
Weakness Enumeration
References
Timeline
- Published
- Last Modified
- Status
- Deferred
Frequently Asked Questions
What is CVE-2025-2826?
How severe is CVE-2025-2826?
How do I fix CVE-2025-2826?
Are you affected by CVE-2025-2826?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST