CVE-2024-9132

High

Published: 10 January 2025

Published

10 January 2025

Modified

29 September 2025

KEV Added

—

Patch

—

CVSS Score 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS Score 0.0059 69.4th percentile

Risk Priority 17 60% EPSS · 20% KEV · 20% CVSS

Description

The administrator is able to configure an insecure captive portal script

Security Summary

CVE-2024-9132 is a high-severity vulnerability (CVSS 8.1, CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H) classified under CWE-94 (code injection), affecting Arista Networks software. It stems from the ability of administrators to configure an insecure captive portal script, potentially enabling arbitrary code execution.

Remote attackers with network access can exploit this vulnerability, requiring high attack complexity but no privileges or user interaction. Successful exploitation grants high-impact confidentiality, integrity, and availability effects, allowing attackers to inject and execute malicious code through the misconfigured captive portal script.

Arista has issued Security Advisory-0105, available at https://www.arista.com/en/support/advisories-notices/security-advisory/20454-security-advisory-0105, which provides details on affected versions and recommended mitigations or patches.

Details

CWE(s): CWE-94

Affected Products

arista

ng firewall

≤ 17.1.1

References

https://www.arista.com/en/support/advisories-notices/security-advisory/20454-security-advisory-0105
Mitigation, Vendor Advisory · psirt@arista.com