Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2023-24547

On affected platforms running Arista MOS, the configuration of a BGP password will cause the password to be logged in clear text that can be revealed in local logs or remote logging servers by authenticated users, as well as appear in clear text in the device’s running config.

  • Published: Dec 6, 2023
  • Updated: Dec 12, 2023
  • CVE: CVE-2023-24547
  • Severity: Medium
  • Exploit:

CVSS v3:

  • Severity: Medium
  • Score: 6.5
  • AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CWEs:

OWASP TOP 10:

Software From Fixed in
arista / mos 0.13.0 0.39.4.x