CVE-2024-6858
Received
Received - Intake
Multi-Auth Bypass in Arista EOS 802.1X Mode
Publication date: 2026-06-04
Last updated on: 2026-06-04
Assigner: Arista Networks, Inc.
Description
Description
In Aristaβs EOS when in 802.1X mode, multi-auth unauthenticated hosts might be allowed access to a switch port if there exists an EAPOL capable device in the fallback VLAN.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
Currently, no data is known.
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-1287 | The product receives input that is expected to be of a certain type, but it does not validate or incorrectly validates that the input is actually of the expected type. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability occurs in Arista's EOS when operating in 802.1X mode. It allows multi-auth unauthenticated hosts to potentially gain access to a switch port if there is an EAPOL capable device present in the fallback VLAN.
How can this vulnerability impact me? :
The vulnerability could allow unauthorized devices to access network switch ports, potentially leading to unauthorized network access and exposure of network resources.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70