vulnerability

security-advisory-0042

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
4	(AV:N/AC:M/Au:N/C:N/I:N/A:P)	Oct 9, 2019	Sep 4, 2024	Jan 14, 2026

Severity

CVSS

(AV:N/AC:M/Au:N/C:N/I:N/A:P)

Published

Oct 9, 2019

Added

Sep 4, 2024

Modified

Jan 14, 2026

Description

This advisory documents a security vulnerability identified internally by Arista Networks in the implementation of the Label Distribution Protocol (LDP) protocol in EOS. Under race conditions, the LDP agent can establish an LDP session with a malicious peer potentially allowing the possibility of a Denial of Service (DoS) attack on route updates and in turn potentially leading to an Out of Memory (OOM) condition that is disruptive to traffic forwarding. Arista has not received evidence of this vulnerability being exploited, as of the date of this update.

Solution

upgrade-solution-cve-2019-14810

References

CVE-2019-14810
https://attackerkb.com/topics/CVE-2019-14810
URL-https://www.arista.com//en/support/advisories-notices/security-advisory/8321-security-advisory-42

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today