This advisory documents an internally found vulnerability in the on premises deployment model of Arista CloudVision Portal (CVP) where under a certain set of conditions, user passwords can be leaked in the Audit and System logs. The impact of this vulnerability is that the CVP user login passwords might be leaked to other authenticated users.
References
Link | Resource |
---|---|
https://www.arista.com/en/support/advisories-notices/security-advisory/15865-security-advisory-0079 | Vendor Advisory |
Configurations
History
21 Jul 2023, 16:44
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-532 |
Information
Published : 2022-08-05 17:15
Updated : 2024-02-28 19:29
NVD link : CVE-2022-29071
Mitre link : CVE-2022-29071
CVE.ORG link : CVE-2022-29071
JSON object : View
Products Affected
arista
- cloudvision_portal