CNNVD-202510-3932 Information
CNNVD ID
CNNVD-202510-3932
Related CVE
- CNNVD Published: 2025-10-29
Description (Chinese)
Arista DANZ Monitoring Fabric是美国Arista公司的一个流量监控、安全、性能分析平台。 Arista DANZ Monitoring Fabric存在安全漏洞,该漏洞源于受限用户可通过调试API查看配置数据库中的敏感部分,可能导致用户密码哈希泄露。
Description (English)
Arista DANZ Monitoring Fabric is a traffic monitoring, safety and performance analysis platform for the American company Arista. There is a security loophole in Arista DANZ Monitoring Fabric, which stems from the fact that restricted users can debug API to view sensitive parts of the configuration database, which could lead to the leaking of the user password Hashi.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Arista
Published
2025-10-29
Last Modified
2026-02-24
References
https://www.arista.com/en/support/advisories-notices/security-advisory/22538-security-advisory-0124
Patch
https://www.arista.com/en/support/advisories-notices/security-advisory/22538-security-advisory-0124
Share on: