CVE-2021-28498 : Security Advisory and Response
Discover the details of CVE-2021-28498 affecting Arista's Metamako Operating System (MOS). Learn about the impact, affected systems, and mitigation steps to secure your infrastructure.
A security vulnerability, identified as CVE-2021-28498, impacts Arista's Metamako Operating System (MOS) software running on Arista 7130 Systems. The vulnerability arises due to user enable passwords set in clear text, potentially granting complete access to unprivileged users on affected systems.
Understanding CVE-2021-28498
This section delves into the details of the CVE-2021-28498 vulnerability.
What is CVE-2021-28498?
In Arista's MOS software on the 7130 product line, storing user enable passwords in clear text may lead to unauthorized users gaining complete system access. Affected versions include MOS-0.13 and releases in the MOS-0.1x, MOS-0.2x, and MOS-0.3x trains.
The Impact of CVE-2021-28498
The vulnerability poses a high severity threat with a CVSS base score of 8.7 due to low attack complexity, high availability and integrity impact, and low confidentiality impact. Attack vector is local, and user interaction is not required.
Technical Details of CVE-2021-28498
This section provides in-depth technical insights into CVE-2021-28498.
Vulnerability Description
The issue stems from the inadequate handling of user enable passwords, allowing unauthorized access to critical system functions.
Affected Systems and Versions
Arista 7130 Systems running MOS are affected by this vulnerability across specific versions such as MOS-0.13, MOS-0.26.7, and MOS-0.32.0.
Exploitation Mechanism
Attackers with access to user enable passwords stored in clear text can exploit this vulnerability to gain unauthorized system access.
Mitigation and Prevention
In this section, find detailed steps to mitigate and prevent the CVE-2021-28498 vulnerability.
Immediate Steps to Take
Upgrade to MOS-0.26.7 or MOS-0.32.0 to address the vulnerability immediately.
Long-Term Security Practices
Implement robust password management policies, such as avoiding storage of passwords in clear text, to enhance system security.
Patching and Updates
Install the hotfix provided by Arista to secure the affected systems. Refer to Arista's security advisory for detailed hotfix installation instructions.