CVE-2024-11186

On affected versions of the CloudVision Portal, improper access controls could enable a malicious authenticated user to take broader actions on managed EOS devices than intended. This advisory impacts the Arista CloudVision Portal products when run on-prem

Description

On affected versions of the CloudVision Portal, improper access controls could enable a malicious authenticated user to take broader actions on managed EOS devices than intended. This advisory impacts the Arista CloudVision Portal products when run on-premise. It does not impact CloudVision as-a-Service.

INFO

Published Date :

2025-05-08T18:47:52.859Z

Last Modified :

2025-05-08T19:01:23.429Z

Source :

Arista

AFFECTED PRODUCTS

The following products are affected by CVE-2024-11186 vulnerability.

No data.

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-11186.

URL	Resource
https://www.arista.com/en/support/advisories-notices/security-advisory/21314-security-advisory-0114

CVSS Vulnerability Scoring System

V3.1

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality Impact

Integrity Impact

Availability Impact