CVE-2026-7473 - Vulnerability Details

On affected platforms running Arista EOS where a tunnel decapsulation configuration—such as VXLAN (Virtual Extensible LAN), decap-groups, or a GRE (Generic Routing Encapsulation) tunnel interface—is present, the switch will incorrectly decapsulate and forward other unexpected tunneled packet with a destination IP matching its configured decapsulation IP. This occurs because the switch does not verify the tunnel protocol type, potentially leading to the unexpected processing of non-configured tunnel traffic.

This issue has been reported as being exploited in the wild.

Attack Vector Network

Attack Complexity Low

Privileges Required None

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact None

Vulnerable System Integrity Impact Low

Vulnerable System Availability Impact None

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact Low

Subsequent System Availability Impact None

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Changed

Confidentiality Impact None

Integrity Impact Low

Availability Impact None

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is in the KEV database since yesterday.

The EPSS score is 0.00029.

Exploitation active

Automatable yes

Technical Impact total

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Arista Networks

EOS

affected

Version	Status	Constraints
`4.36.0`	affected	—
`4.35.0`	affected	≤ 4.35
`4.34.0`	affected	≤ 4.34
`4.33.0`	affected	≤ 4.33
`4.32.0`	affected	≤ 4.32
`4.31.0`	affected	≤ 4.31
`*`	affected	≤ 4.30

Configuration 1 [-]

AND

cpe:2.3:o:arista:eos:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:arista:7020sr-24c2:-:::::::*
	cpe:2.3:h:arista:7020sr-32c2:-:::::::*
	cpe:2.3:h:arista:7020srg-24c2:-:::::::*
	cpe:2.3:h:arista:7020tr-48:-:::::::*
	cpe:2.3:h:arista:7020tra-48:-:::::::*
	cpe:2.3:h:arista:7280cr-48:-:::::::*
	cpe:2.3:h:arista:7280cr2-60:-:::::::*
	cpe:2.3:h:arista:7280cr2a-30:-:::::::*
	cpe:2.3:h:arista:7280cr2a-60:-:::::::*
	cpe:2.3:h:arista:7280cr2k-30:-:::::::*
	cpe:2.3:h:arista:7280cr2k-60:-:::::::*
	cpe:2.3:h:arista:7280cr2m-30:-:::::::*
	cpe:2.3:h:arista:7280cr3-32d4:-:::::::*
	cpe:2.3:h:arista:7280cr3-32p4:-:::::::*
	cpe:2.3:h:arista:7280cr3-36s:-:::::::*
	cpe:2.3:h:arista:7280cr3-96:-:::::::*
	cpe:2.3:h:arista:7280cr3a-24d12:-:::::::*
	cpe:2.3:h:arista:7280cr3a-48d6:-:::::::*
	cpe:2.3:h:arista:7280cr3a-72:-:::::::*
	cpe:2.3:h:arista:7280cr3ak-24d12:-:::::::*
	cpe:2.3:h:arista:7280cr3ak-48d6:-:::::::*
	cpe:2.3:h:arista:7280cr3ak-72:-:::::::*
	cpe:2.3:h:arista:7280cr3am-24d12:-:::::::*
	cpe:2.3:h:arista:7280cr3am-48d6:-:::::::*
	cpe:2.3:h:arista:7280cr3am-72:-:::::::*
	cpe:2.3:h:arista:7280cr3mk-32d4s:-:::::::*
	cpe:2.3:h:arista:7280cr3mk-32p4s:-:::::::*
	cpe:2.3:h:arista:7280dr3-24:-:::::::*
	cpe:2.3:h:arista:7280dr3a-36:-:::::::*
	cpe:2.3:h:arista:7280dr3a-54:-:::::::*
	cpe:2.3:h:arista:7280dr3ak-36:-:::::::*
	cpe:2.3:h:arista:7280dr3ak-54:-:::::::*
	cpe:2.3:h:arista:7280dr3am-36:-:::::::*
	cpe:2.3:h:arista:7280dr3am-54:-:::::::*
	cpe:2.3:h:arista:7280pr3-24:-:::::::*
	cpe:2.3:h:arista:7280qr-c36:-:::::::*
	cpe:2.3:h:arista:7280qr-c36-m:-:::::::*
	cpe:2.3:h:arista:7280qr-c72:-:::::::*
	cpe:2.3:h:arista:7280qra-c36s:-:::::::*
	cpe:2.3:h:arista:7280qra-c36sm:-:::::::*
	cpe:2.3:h:arista:7280sr-48c6:-:::::::*
	cpe:2.3:h:arista:7280sr2-48yc6:-:::::::*
	cpe:2.3:h:arista:7280sr2-48yc6-m:-:::::::*
	cpe:2.3:h:arista:7280sr2a-48yc6:-:::::::*
	cpe:2.3:h:arista:7280sr2a-48yc6-m:-:::::::*
	cpe:2.3:h:arista:7280sr2k-48c6-m:-:::::::*
	cpe:2.3:h:arista:7280sr3-40yc6:-:::::::*
	cpe:2.3:h:arista:7280sr3-48yc8:-:::::::*
	cpe:2.3:h:arista:7280sr3m-48yc8:-:::::::*
	cpe:2.3:h:arista:7280sra-48c6:-:::::::*
	cpe:2.3:h:arista:7280sra-48c6-m:-:::::::*
	cpe:2.3:h:arista:7280sram-48c6:-:::::::*
	cpe:2.3:h:arista:7280srm-40cx2:-:::::::*
	cpe:2.3:h:arista:7280tr-48c6:-:::::::*
	cpe:2.3:h:arista:7280tr3-40c6:-:::::::*
	cpe:2.3:h:arista:7280tra-48c6:-:::::::*
	cpe:2.3:h:arista:7280tra-48c6-m:-:::::::*
	cpe:2.3:h:arista:7289r3a-sc:-:::::::*
	cpe:2.3:h:arista:7289r3ak-sc:-:::::::*
	cpe:2.3:h:arista:7289r3am-sc:-:::::::*
	cpe:2.3:h:arista:7500r-36cq-lc:-:::::::*
	cpe:2.3:h:arista:7500r-36q-lc:-:::::::*
	cpe:2.3:h:arista:7500r-48s2cq-lc:-:::::::*
	cpe:2.3:h:arista:7500r-8cfpx-lc:-:::::::*
cpe:2.3:h:arista:7500r2-36cq-lc:-:::::::*
cpe:2.3:h:arista:7500r2a-36cq-lc:-:::::::*
cpe:2.3:h:arista:7500r2ak-36cq-lc:-:::::::*
cpe:2.3:h:arista:7500r2ak-48ycq-lc:-:::::::*
cpe:2.3:h:arista:7500r2am-36cq-lc:-:::::::*
cpe:2.3:h:arista:7500r2m-36cq-lc:-:::::::*
cpe:2.3:h:arista:7500r3-24d:-:::::::*
cpe:2.3:h:arista:7500r3-24p:-:::::::*
cpe:2.3:h:arista:7500r3-36cq:-:::::::*
cpe:2.3:h:arista:7500r3k-36cq:-:::::::*
cpe:2.3:h:arista:7500r3k-48y4d:-:::::::*
cpe:2.3:h:arista:7500rm-36cq-lc:-:::::::*
cpe:2.3:h:arista:7504r-fm:-:::::::*
cpe:2.3:h:arista:7504r3:-:::::::*
cpe:2.3:h:arista:7508r-fm:-:::::::*
cpe:2.3:h:arista:7508r3:-:::::::*
cpe:2.3:h:arista:7512r-fm:-:::::::*
cpe:2.3:h:arista:7512r3:-:::::::*
cpe:2.3:h:arista:7516-sup2:-:::::::*
cpe:2.3:h:arista:7516n-ch:-:::::::*
cpe:2.3:h:arista:7516r-fm:-:::::::*
cpe:2.3:h:arista:7800r3-36d:-:::::::*
cpe:2.3:h:arista:7800r3-48cq:-:::::::*
cpe:2.3:h:arista:7800r3a-36d:-:::::::*
cpe:2.3:h:arista:7800r3a-36dm:-:::::::*
cpe:2.3:h:arista:7800r3a-36p:-:::::::*
cpe:2.3:h:arista:7800r3a-36pm:-:::::::*
cpe:2.3:h:arista:7800r3ak-36dm:-:::::::*
cpe:2.3:h:arista:7800r3ak-36pm:-:::::::*
cpe:2.3:h:arista:7800r3k-48cq:-:::::::*
cpe:2.3:h:arista:7800r3k-48cqms:-:::::::*
cpe:2.3:h:arista:7800r3k-72y:-:::::::*
cpe:2.3:h:arista:7804r3:-:::::::*
cpe:2.3:h:arista:7808r3:-:::::::*
cpe:2.3:h:arista:7812r3:-:::::::*
cpe:2.3:h:arista:7816lr3:-:::::::*
cpe:2.3:h:arista:7816r3:-:::::::*

No data.

OpenCVE Enrichment is a feature of OpenCVE that uses AI to automatically link vendors and products to CVEs. Learn more on GitHub.

Vendors	Products
Arista Subscribe	Eos Subscribe

Project Subscriptions

Vendors	Products
Arista Subscribe	7020sr-24c2 Subscribe 7020sr-32c2 Subscribe 7020srg-24c2 Subscribe 7020tr-48 Subscribe 7020tra-48 Subscribe 7280cr-48 Subscribe 7280cr2-60 Subscribe 7280cr2a-30 Subscribe 7280cr2a-60 Subscribe 7280cr2k-30 Subscribe 7280cr2k-60 Subscribe 7280cr2m-30 Subscribe 7280cr3-32d4 Subscribe 7280cr3-32p4 Subscribe 7280cr3-36s Subscribe 7280cr3-96 Subscribe 7280cr3a-24d12 Subscribe 7280cr3a-48d6 Subscribe 7280cr3a-72 Subscribe 7280cr3ak-24d12 Subscribe 7280cr3ak-48d6 Subscribe 7280cr3ak-72 Subscribe 7280cr3am-24d12 Subscribe 7280cr3am-48d6 Subscribe 7280cr3am-72 Subscribe 7280cr3mk-32d4s Subscribe 7280cr3mk-32p4s Subscribe 7280dr3-24 Subscribe 7280dr3a-36 Subscribe 7280dr3a-54 Subscribe 7280dr3ak-36 Subscribe 7280dr3ak-54 Subscribe 7280dr3am-36 Subscribe 7280dr3am-54 Subscribe 7280pr3-24 Subscribe 7280qr-c36 Subscribe 7280qr-c36-m Subscribe 7280qr-c72 Subscribe 7280qra-c36s Subscribe 7280qra-c36sm Subscribe 7280sr-48c6 Subscribe 7280sr2-48yc6 Subscribe 7280sr2-48yc6-m Subscribe 7280sr2a-48yc6 Subscribe 7280sr2a-48yc6-m Subscribe 7280sr2k-48c6-m Subscribe 7280sr3-40yc6 Subscribe 7280sr3-48yc8 Subscribe 7280sr3m-48yc8 Subscribe 7280sra-48c6 Subscribe 7280sra-48c6-m Subscribe 7280sram-48c6 Subscribe 7280srm-40cx2 Subscribe 7280tr-48c6 Subscribe 7280tr3-40c6 Subscribe 7280tra-48c6 Subscribe 7280tra-48c6-m Subscribe 7289r3a-sc Subscribe 7289r3ak-sc Subscribe 7289r3am-sc Subscribe 7500r-36cq-lc Subscribe 7500r-36q-lc Subscribe 7500r-48s2cq-lc Subscribe 7500r-8cfpx-lc Subscribe 7500r2-36cq-lc Subscribe 7500r2a-36cq-lc Subscribe 7500r2ak-36cq-lc Subscribe 7500r2ak-48ycq-lc Subscribe 7500r2am-36cq-lc Subscribe 7500r2m-36cq-lc Subscribe 7500r3-24d Subscribe 7500r3-24p Subscribe 7500r3-36cq Subscribe 7500r3k-36cq Subscribe 7500r3k-48y4d Subscribe 7500rm-36cq-lc Subscribe 7504r-fm Subscribe 7504r3 Subscribe 7508r-fm Subscribe 7508r3 Subscribe 7512r-fm Subscribe 7512r3 Subscribe 7516-sup2 Subscribe 7516n-ch Subscribe 7516r-fm Subscribe 7800r3-36d Subscribe 7800r3-48cq Subscribe 7800r3a-36d Subscribe 7800r3a-36dm Subscribe 7800r3a-36p Subscribe 7800r3a-36pm Subscribe 7800r3ak-36dm Subscribe 7800r3ak-36pm Subscribe 7800r3k-48cq Subscribe 7800r3k-48cqms Subscribe 7800r3k-72y Subscribe 7804r3 Subscribe 7808r3 Subscribe 7812r3 Subscribe 7816lr3 Subscribe 7816r3 Subscribe Eos Subscribe

Advisories

No advisories yet.

Fixes

Solution

No software upgrade path is planned to address this issue due to the risk of breaking existing configuration on deployments. The recommended resolution of this issue is to follow the appropriate mitigation instructions detailed in the workaround block.

Workaround

There are two broad approaches to mitigate this issue - (1) applying ACLs on upstream devices or (2) applying ACLs on the devices where the unexpected decapsulation is happening. In both cases, the idea is to either selectively allow only legitimate tunnel traffic or to selectively block malicious tunnel traffic. For example, if a network is configured to forward VXLAN traffic, but GRE traffic is being unexpectedly forwarded, then ACLs can be used to either selectively allow just VXLAN traffic or selectively block GRE traffic. More details about using the ACL feature can be found in the Arista User Manual https://www.arista.com/en/um-eos/eos-acls-and-route-maps#xx1150869 . A note of caution, the following ACL-based mitigation recommendations assume that the tunnel IP is dedicated solely to receiving the configured tunnel protocol traffic. When adapting these rules for your environment, it is important to explicitly permit any additional protocol traffic—such as BGP or SSH—if that IP serves multiple functions. To maintain connectivity, ensure these permit statements are sequenced before any deny statements directed at the decapsulation IP. The following configurations align with the recommendations outlined in the Arista EOS Hardening Guide https://arista.my.site.com/AristaCommunity/s/article/arista-eos-hardening-guide#Comm_Kna_ka0Uw00000097VJIAY_71 .

References

Link	Providers
https://www.arista.com/en/support/advisories-notices/security-advisory/22872-security-advisory-0137
https://www.arista.com/en/support/advisories-notices/security-advisory/24005-security-advisory-0137
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2026-7473

History

Tue, 09 Jun 2026 21:00:00 +0000

Type	Values Removed	Values Added
First Time appeared		Arista 7020sr-24c2 Arista 7020sr-32c2 Arista 7020srg-24c2 Arista 7020tr-48 Arista 7020tra-48 Arista 7280cr-48 Arista 7280cr2-60 Arista 7280cr2a-30 Arista 7280cr2a-60 Arista 7280cr2k-30 Arista 7280cr2k-60 Arista 7280cr2m-30 Arista 7280cr3-32d4 Arista 7280cr3-32p4 Arista 7280cr3-36s Arista 7280cr3-96 Arista 7280cr3a-24d12 Arista 7280cr3a-48d6 Arista 7280cr3a-72 Arista 7280cr3ak-24d12 Arista 7280cr3ak-48d6 Arista 7280cr3ak-72 Arista 7280cr3am-24d12 Arista 7280cr3am-48d6 Arista 7280cr3am-72 Arista 7280cr3mk-32d4s Arista 7280cr3mk-32p4s Arista 7280dr3-24 Arista 7280dr3a-36 Arista 7280dr3a-54 Arista 7280dr3ak-36 Arista 7280dr3ak-54 Arista 7280dr3am-36 Arista 7280dr3am-54 Arista 7280pr3-24 Arista 7280qr-c36 Arista 7280qr-c36-m Arista 7280qr-c72 Arista 7280qra-c36s Arista 7280qra-c36sm Arista 7280sr-48c6 Arista 7280sr2-48yc6 Arista 7280sr2-48yc6-m Arista 7280sr2a-48yc6 Arista 7280sr2a-48yc6-m Arista 7280sr2k-48c6-m Arista 7280sr3-40yc6 Arista 7280sr3-48yc8 Arista 7280sr3m-48yc8 Arista 7280sra-48c6 Arista 7280sra-48c6-m Arista 7280sram-48c6 Arista 7280srm-40cx2 Arista 7280tr-48c6 Arista 7280tr3-40c6 Arista 7280tra-48c6 Arista 7280tra-48c6-m Arista 7289r3a-sc Arista 7289r3ak-sc Arista 7289r3am-sc Arista 7500r-36cq-lc Arista 7500r-36q-lc Arista 7500r-48s2cq-lc Arista 7500r-8cfpx-lc Arista 7500r2-36cq-lc Arista 7500r2a-36cq-lc Arista 7500r2ak-36cq-lc Arista 7500r2ak-48ycq-lc Arista 7500r2am-36cq-lc Arista 7500r2m-36cq-lc Arista 7500r3-24d Arista 7500r3-24p Arista 7500r3-36cq Arista 7500r3k-36cq Arista 7500r3k-48y4d Arista 7500rm-36cq-lc Arista 7504r-fm Arista 7504r3 Arista 7508r-fm Arista 7508r3 Arista 7512r-fm Arista 7512r3 Arista 7516-sup2 Arista 7516n-ch Arista 7516r-fm Arista 7800r3-36d Arista 7800r3-48cq Arista 7800r3a-36d Arista 7800r3a-36dm Arista 7800r3a-36p Arista 7800r3a-36pm Arista 7800r3ak-36dm Arista 7800r3ak-36pm Arista 7800r3k-48cq Arista 7800r3k-48cqms Arista 7800r3k-72y Arista 7804r3 Arista 7808r3 Arista 7812r3 Arista 7816lr3 Arista 7816r3
CPEs		cpe:2.3:h:arista:7020sr-24c2:-:::::::* cpe:2.3:h:arista:7020sr-32c2:-:::::::* cpe:2.3:h:arista:7020srg-24c2:-:::::::* cpe:2.3:h:arista:7020tr-48:-:::::::* cpe:2.3:h:arista:7020tra-48:-:::::::* cpe:2.3:h:arista:7280cr-48:-:::::::* cpe:2.3:h:arista:7280cr2-60:-:::::::* cpe:2.3:h:arista:7280cr2a-30:-:::::::* cpe:2.3:h:arista:7280cr2a-60:-:::::::* cpe:2.3:h:arista:7280cr2k-30:-:::::::* cpe:2.3:h:arista:7280cr2k-60:-:::::::* cpe:2.3:h:arista:7280cr2m-30:-:::::::* cpe:2.3:h:arista:7280cr3-32d4:-:::::::* cpe:2.3:h:arista:7280cr3-32p4:-:::::::* cpe:2.3:h:arista:7280cr3-36s:-:::::::* cpe:2.3:h:arista:7280cr3-96:-:::::::* cpe:2.3:h:arista:7280cr3a-24d12:-:::::::* cpe:2.3:h:arista:7280cr3a-48d6:-:::::::* cpe:2.3:h:arista:7280cr3a-72:-:::::::* cpe:2.3:h:arista:7280cr3ak-24d12:-:::::::* cpe:2.3:h:arista:7280cr3ak-48d6:-:::::::* cpe:2.3:h:arista:7280cr3ak-72:-:::::::* cpe:2.3:h:arista:7280cr3am-24d12:-:::::::* cpe:2.3:h:arista:7280cr3am-48d6:-:::::::* cpe:2.3:h:arista:7280cr3am-72:-:::::::* cpe:2.3:h:arista:7280cr3mk-32d4s:-:::::::* cpe:2.3:h:arista:7280cr3mk-32p4s:-:::::::* cpe:2.3:h:arista:7280dr3-24:-:::::::* cpe:2.3:h:arista:7280dr3a-36:-:::::::* cpe:2.3:h:arista:7280dr3a-54:-:::::::* cpe:2.3:h:arista:7280dr3ak-36:-:::::::* cpe:2.3:h:arista:7280dr3ak-54:-:::::::* cpe:2.3:h:arista:7280dr3am-36:-:::::::* cpe:2.3:h:arista:7280dr3am-54:-:::::::* cpe:2.3:h:arista:7280pr3-24:-:::::::* cpe:2.3:h:arista:7280qr-c36-m:-:::::::* cpe:2.3:h:arista:7280qr-c36:-:::::::* cpe:2.3:h:arista:7280qr-c72:-:::::::* cpe:2.3:h:arista:7280qra-c36s:-:::::::* cpe:2.3:h:arista:7280qra-c36sm:-:::::::* cpe:2.3:h:arista:7280sr-48c6:-:::::::* cpe:2.3:h:arista:7280sr2-48yc6-m:-:::::::* cpe:2.3:h:arista:7280sr2-48yc6:-:::::::* cpe:2.3:h:arista:7280sr2a-48yc6-m:-:::::::* cpe:2.3:h:arista:7280sr2a-48yc6:-:::::::* cpe:2.3:h:arista:7280sr2k-48c6-m:-:::::::* cpe:2.3:h:arista:7280sr3-40yc6:-:::::::* cpe:2.3:h:arista:7280sr3-48yc8:-:::::::* cpe:2.3:h:arista:7280sr3m-48yc8:-:::::::* cpe:2.3:h:arista:7280sra-48c6-m:-:::::::* cpe:2.3:h:arista:7280sra-48c6:-:::::::* cpe:2.3:h:arista:7280sram-48c6:-:::::::* cpe:2.3:h:arista:7280srm-40cx2:-:::::::* cpe:2.3:h:arista:7280tr-48c6:-:::::::* cpe:2.3:h:arista:7280tr3-40c6:-:::::::* cpe:2.3:h:arista:7280tra-48c6-m:-:::::::* cpe:2.3:h:arista:7280tra-48c6:-:::::::* cpe:2.3:h:arista:7289r3a-sc:-:::::::* cpe:2.3:h:arista:7289r3ak-sc:-:::::::* cpe:2.3:h:arista:7289r3am-sc:-:::::::* cpe:2.3:h:arista:7500r-36cq-lc:-:::::::* cpe:2.3:h:arista:7500r-36q-lc:-:::::::* cpe:2.3:h:arista:7500r-48s2cq-lc:-:::::::* cpe:2.3:h:arista:7500r-8cfpx-lc:-:::::::* cpe:2.3:h:arista:7500r2-36cq-lc:-:::::::* cpe:2.3:h:arista:7500r2a-36cq-lc:-:::::::* cpe:2.3:h:arista:7500r2ak-36cq-lc:-:::::::* cpe:2.3:h:arista:7500r2ak-48ycq-lc:-:::::::* cpe:2.3:h:arista:7500r2am-36cq-lc:-:::::::* cpe:2.3:h:arista:7500r2m-36cq-lc:-:::::::* cpe:2.3:h:arista:7500r3-24d:-:::::::* cpe:2.3:h:arista:7500r3-24p:-:::::::* cpe:2.3:h:arista:7500r3-36cq:-:::::::* cpe:2.3:h:arista:7500r3k-36cq:-:::::::* cpe:2.3:h:arista:7500r3k-48y4d:-:::::::* cpe:2.3:h:arista:7500rm-36cq-lc:-:::::::* cpe:2.3:h:arista:7504r-fm:-:::::::* cpe:2.3:h:arista:7504r3:-:::::::* cpe:2.3:h:arista:7508r-fm:-:::::::* cpe:2.3:h:arista:7508r3:-:::::::* cpe:2.3:h:arista:7512r-fm:-:::::::* cpe:2.3:h:arista:7512r3:-:::::::* cpe:2.3:h:arista:7516-sup2:-:::::::* cpe:2.3:h:arista:7516n-ch:-:::::::* cpe:2.3:h:arista:7516r-fm:-:::::::* cpe:2.3:h:arista:7800r3-36d:-:::::::* cpe:2.3:h:arista:7800r3-48cq:-:::::::* cpe:2.3:h:arista:7800r3a-36d:-:::::::* cpe:2.3:h:arista:7800r3a-36dm:-:::::::* cpe:2.3:h:arista:7800r3a-36p:-:::::::* cpe:2.3:h:arista:7800r3a-36pm:-:::::::* cpe:2.3:h:arista:7800r3ak-36dm:-:::::::* cpe:2.3:h:arista:7800r3ak-36pm:-:::::::* cpe:2.3:h:arista:7800r3k-48cq:-:::::::* cpe:2.3:h:arista:7800r3k-48cqms:-:::::::* cpe:2.3:h:arista:7800r3k-72y:-:::::::* cpe:2.3:h:arista:7804r3:-:::::::* cpe:2.3:h:arista:7808r3:-:::::::* cpe:2.3:h:arista:7812r3:-:::::::* cpe:2.3:h:arista:7816lr3:-:::::::* cpe:2.3:h:arista:7816r3:-:::::::* cpe:2.3:o:arista:eos::::::::
Vendors & Products		Arista 7020sr-24c2 Arista 7020sr-32c2 Arista 7020srg-24c2 Arista 7020tr-48 Arista 7020tra-48 Arista 7280cr-48 Arista 7280cr2-60 Arista 7280cr2a-30 Arista 7280cr2a-60 Arista 7280cr2k-30 Arista 7280cr2k-60 Arista 7280cr2m-30 Arista 7280cr3-32d4 Arista 7280cr3-32p4 Arista 7280cr3-36s Arista 7280cr3-96 Arista 7280cr3a-24d12 Arista 7280cr3a-48d6 Arista 7280cr3a-72 Arista 7280cr3ak-24d12 Arista 7280cr3ak-48d6 Arista 7280cr3ak-72 Arista 7280cr3am-24d12 Arista 7280cr3am-48d6 Arista 7280cr3am-72 Arista 7280cr3mk-32d4s Arista 7280cr3mk-32p4s Arista 7280dr3-24 Arista 7280dr3a-36 Arista 7280dr3a-54 Arista 7280dr3ak-36 Arista 7280dr3ak-54 Arista 7280dr3am-36 Arista 7280dr3am-54 Arista 7280pr3-24 Arista 7280qr-c36 Arista 7280qr-c36-m Arista 7280qr-c72 Arista 7280qra-c36s Arista 7280qra-c36sm Arista 7280sr-48c6 Arista 7280sr2-48yc6 Arista 7280sr2-48yc6-m Arista 7280sr2a-48yc6 Arista 7280sr2a-48yc6-m Arista 7280sr2k-48c6-m Arista 7280sr3-40yc6 Arista 7280sr3-48yc8 Arista 7280sr3m-48yc8 Arista 7280sra-48c6 Arista 7280sra-48c6-m Arista 7280sram-48c6 Arista 7280srm-40cx2 Arista 7280tr-48c6 Arista 7280tr3-40c6 Arista 7280tra-48c6 Arista 7280tra-48c6-m Arista 7289r3a-sc Arista 7289r3ak-sc Arista 7289r3am-sc Arista 7500r-36cq-lc Arista 7500r-36q-lc Arista 7500r-48s2cq-lc Arista 7500r-8cfpx-lc Arista 7500r2-36cq-lc Arista 7500r2a-36cq-lc Arista 7500r2ak-36cq-lc Arista 7500r2ak-48ycq-lc Arista 7500r2am-36cq-lc Arista 7500r2m-36cq-lc Arista 7500r3-24d Arista 7500r3-24p Arista 7500r3-36cq Arista 7500r3k-36cq Arista 7500r3k-48y4d Arista 7500rm-36cq-lc Arista 7504r-fm Arista 7504r3 Arista 7508r-fm Arista 7508r3 Arista 7512r-fm Arista 7512r3 Arista 7516-sup2 Arista 7516n-ch Arista 7516r-fm Arista 7800r3-36d Arista 7800r3-48cq Arista 7800r3a-36d Arista 7800r3a-36dm Arista 7800r3a-36p Arista 7800r3a-36pm Arista 7800r3ak-36dm Arista 7800r3ak-36pm Arista 7800r3k-48cq Arista 7800r3k-48cqms Arista 7800r3k-72y Arista 7804r3 Arista 7808r3 Arista 7812r3 Arista 7816lr3 Arista 7816r3

Tue, 09 Jun 2026 18:30:00 +0000

Type	Values Removed	Values Added
References		https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2026-7473
Metrics	ssvc `{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`	ssvc `{'options': {'Automatable': 'yes', 'Exploitation': 'active', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Tue, 09 Jun 2026 17:45:00 +0000

Type	Values Removed	Values Added
Metrics		kev `{'dateAdded': '2026-06-09T00:00:00+00:00', 'dueDate': '2026-06-23T00:00:00+00:00'}`

Mon, 08 Jun 2026 14:30:00 +0000

Type	Values Removed	Values Added
References		https://www.arista.com/en/support/advisories-notices/security-advisory/24005-security-advisory-0137
Metrics		ssvc `{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Sun, 07 Jun 2026 11:30:00 +0000

Type	Values Removed	Values Added
First Time appeared		Arista Arista eos
Vendors & Products		Arista Arista eos

Fri, 05 Jun 2026 16:45:00 +0000

Type	Values Removed	Values Added
Description		On affected platforms running Arista EOS where a tunnel decapsulation configuration—such as VXLAN (Virtual Extensible LAN), decap-groups, or a GRE (Generic Routing Encapsulation) tunnel interface—is present, the switch will incorrectly decapsulate and forward other unexpected tunneled packet with a destination IP matching its configured decapsulation IP. This occurs because the switch does not verify the tunnel protocol type, potentially leading to the unexpected processing of non-configured tunnel traffic. This issue has been reported as being exploited in the wild.
Title		Arista EOS Unexpected Tunnel Protocol Decapsulation and Forwarding Bypass
Weaknesses		CWE-1023
References		https://www.arista.com/en/support/advisories-notices/security-advisory/22872-security-advisory-0137
Metrics		cvssV3_1 `{'score': 5.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N'}` cvssV4_0 `{'score': 6.9, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N'}`

Projects

Sign in to view the affected projects.

MITRE

Status: PUBLISHED

Assigner: Arista

Published: 2026-06-05T16:22:47.989Z

Updated: 2026-06-09T19:58:23.866Z

Reserved: 2026-04-29T20:08:22.118Z

Link: CVE-2026-7473

Vulnrichment

Updated: 2026-06-08T14:10:50.324Z

NVD

Status : Analyzed

Published: 2026-06-05T17:17:02.850

Modified: 2026-06-09T20:48:49.580

Link: CVE-2026-7473

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-06-09T18:45:06Z

Weaknesses

CWE-1023

Attack Vector Network

Attack Complexity Low

Privileges Required None

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact None

Vulnerable System Integrity Impact Low

Vulnerable System Availability Impact None

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact Low

Subsequent System Availability Impact None

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Changed

Confidentiality Impact None

Integrity Impact Low

Availability Impact None

User Interaction None

Exploitation active

Automatable yes

Technical Impact total

Project Subscriptions

Projects

JSON object

JSON object

JSON object

JSON object

JSON object