Security Advisory 0095

Arista Networks Security Advisory

Date: April 3, 2024

Revision
Date
Changes

1.0
April 3, 2024
Initial release

The CVE-ID tracking this issue: CVE-2024-3094CVSSv3.1 Base Score: 10.0 (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H)
Description
Arista Networks is providing this security update in response to the following related security vulnerability:
CVE-2024-3094: Malicious code was discovered in the upstream tarballs of xz, starting with version 5.6.0. Through a series of complex obfuscations, the lib …

READ MORE

Leave a Reply

Your email address will not be published. Required fields are marked *