Terminattr
This hub aggregates every CVE we track for Terminattr, a product in the networking infrastructure space. Use it to gauge the current risk picture and drill into individual advisories.
5
CVEs tracked
1
Critical
2
High
0
In CISA KEV
Severity distribution
HIGH2MEDIUM2CRITICAL1
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
2024-082026-07
Latest CVEs
The 5 most recently published vulnerabilities affecting Terminattr.
- CVE-2023-24512On affected platforms running Arista EOS, an authorized attacker with permissions to perform gNMI requests could craft a request allowing it to update arbitrary configurations in the switch. 8.8
- CVE-2021-28509TerminAttr streams MACsec sensitive data in clear text to other authorized users in CVP6.1
- CVE-2021-28508TerminAttr streams IPsec sensitive data in clear text to other authorized users in CVP6.8
- CVE-2021-28501An issue has recently been discovered in Arista EOS where the incorrect use of EOS's AAA API’s by the OpenConfig and TerminAttr agents could result in unrestricted access to the device for local users with nopassword configuration.9.1
- CVE-2019-17596Go before 1.12.11 and 1.3.x before 1.13.2 can panic upon an attempt to process network traffic containing an invalid DSA public key. There are several attack scenarios, such as traffic from a clien...7.5
Product normalization is registry-driven with AI assist and human review. How it works