CVE-2026-7473
Analyzed Analyzed - Analysis Complete
Arista EOS Tunnel Decapsulation Misconfiguration Leads to Packet Forwarding

Publication date: 2026-06-05

Last updated on: 2026-06-09

Assigner: Arista Networks, Inc.

Description
On affected platforms running Arista EOS where a tunnel decapsulation configuration—such as VXLAN (Virtual Extensible LAN), decap-groups, or a GRE (Generic Routing Encapsulation) tunnel interface—is present, the switch will incorrectly decapsulate and forward other unexpected tunneled packet with a destination IP matching its configured decapsulation IP. This occurs because the switch does not verify the tunnel protocol type, potentially leading to the unexpected processing of non-configured tunnel traffic. This issue has been reported as being exploited in the wild.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-06-05
Last Modified
2026-06-09
Generated
2026-06-27
AI Q&A
2026-06-05
EPSS Evaluated
2026-06-25
NVD
CVE-2026-7473
EUVD
EUVD-2026-34858
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
arista eos *
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-1023 The product performs a comparison between entities that must consider multiple factors or characteristics of each entity, but the comparison does not include one or more of these factors.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability occurs on Arista EOS platforms that have tunnel decapsulation configurations such as VXLAN, decap-groups, or GRE tunnel interfaces. The switch incorrectly decapsulates and forwards tunneled packets that it is not configured to handle if those packets have a destination IP matching the configured decapsulation IP. This happens because the switch does not verify the tunnel protocol type, leading to unexpected processing of non-configured tunnel traffic.

The issue has been reported as exploited in the wild.

Impact Analysis

The vulnerability can lead to the switch processing and forwarding tunneled packets that it should not handle, potentially causing unexpected network behavior or traffic leakage. This could allow attackers to bypass intended network segmentation or security controls by exploiting the incorrect decapsulation, possibly leading to information disclosure or unauthorized network access.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-7473. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart