CVE-2026-2379
Awaiting Analysis Awaiting Analysis - Queue
Arista EOS IPsec Sequence Number Mismatch Vulnerability

Publication date: 2026-06-05

Last updated on: 2026-06-05

Assigner: Arista Networks, Inc.

Description
On affected platforms with hardware IPSec support running Arista EOS with certain IPsec features enabled, EOS may exhibit unexpected behavior in specific cases. Physical interface flaps and certain agent restarts can cause IPsec tunnel re-establishment with existing Security Associations, resulting in sequence number mismatches between tunnel endpoints potentially causing unstable communication.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-06-05
Last Modified
2026-06-05
Generated
2026-06-27
AI Q&A
2026-06-05
EPSS Evaluated
2026-06-25
NVD
CVE-2026-2379
EUVD
EUVD-2026-34875
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
arista arista_eos *
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-672 The product uses, accesses, or otherwise operates on a resource after that resource has been expired, released, or revoked.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability affects Arista EOS running on platforms with hardware IPSec support when certain IPsec features are enabled. In specific situations, such as physical interface flaps or certain agent restarts, the IPsec tunnel may be re-established using existing Security Associations. This can cause sequence number mismatches between the tunnel endpoints, potentially leading to unstable communication.

Impact Analysis

The vulnerability can cause unstable communication over IPsec tunnels due to sequence number mismatches. This instability may disrupt secure network connections, potentially affecting the reliability and availability of services that depend on these IPsec tunnels.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-2379. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart