CVE-2024-12831

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2024-12831
Arista NG Firewall uvm_login Incorrect Authorization Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Arista NG Firewall. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the uvm_login module. The issue results from incorrect authorization. An attacker can leverage this to escalate privileges to resources normally protected from the user. Was ZDI-CAN-24324.

7.8 /10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
https://www.zerodayinitiative.com/advisories/ZDI-24-1720/ Third Party Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:arista:ng_firewall:17.1.1:*:*:*:*:*:*:*
History

03 Jan 2025, 17:48

Type Values Removed Values Added
CPE cpe:2.3:a:arista:ng_firewall:17.1.1:*:*:*:*:*:*:*
CVSS v2 : unknown
v3 : 6.6 		v2 : unknown
v3 : 7.8
First Time Arista
Arista ng Firewall
References () https://www.zerodayinitiative.com/advisories/ZDI-24-1720/ - () https://www.zerodayinitiative.com/advisories/ZDI-24-1720/ - Third Party Advisory
Summary
  • (es) Vulnerabilidad de aumento de privilegios de autorización incorrecta en el módulo uvm_login de Arista NG Firewall. Esta vulnerabilidad permite a los atacantes locales aumentar los privilegios en las instalaciones afectadas de Arista NG Firewall. Un atacante primero debe obtener la capacidad de ejecutar código con poco nivel de privilegios en el sistema de destino para explotar esta vulnerabilidad. La falla específica existe dentro del módulo uvm_login. El problema es el resultado de una autorización incorrecta. Un atacante puede aprovechar esto para aumentar los privilegios a recursos que normalmente están protegidos del usuario. Era ZDI-CAN-24324.

20 Dec 2024, 01:15

Type Values Removed Values Added
New CVE
Information

Published : 2024-12-20 01:15

Updated : 2025-01-03 17:48

NVD link : CVE-2024-12831

Mitre link : CVE-2024-12831

CVE.ORG link : CVE-2024-12831

JSON object : View

Products Affected

arista

  • ng_firewall
CWE
CWE-863

Incorrect Authorization