On affected platforms, a restricted user could break out of...

7.8 / 10

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Description

On affected platforms, a restricted user could break out of the CLI sandbox to the system shell and elevate their privileges.

Basic Information

ID CVE-2025-54545

Source Arista

Published Oct 29, 2025 at 22:36

Affected Product

Vendor Arista Networks

Product DANZ Monitoring Fabric

Affected Versions Arista Networks DANZ Monitoring Fabric 0
Arista Networks DANZ Monitoring Fabric 0
Arista Networks DANZ Monitoring Fabric 0
Arista Networks DANZ Monitoring Fabric 0
Arista Networks DANZ Monitoring Fabric 0
Arista Networks DANZ Monitoring Fabric 0

CWE Classification

CWE-732

References

www.arista.com /en/support/advisories-notices/security-advisory/22538-security-advisory-0124

{
    "lastseen": "",
    "description": "On affected platforms, a restricted user could break out of the CLI sandbox to the system shell and elevate their privileges.",
    "published": "2025-10-29T22:36:24.379Z",
    "modified": "2025-10-29T22:36:24.379Z",
    "type": "cve",
    "title": "On affected platforms, a restricted user could break out of the CLI sandbox to the system shell and elevate their privileges.",
    "source": "Arista",
    "references": "https://www.arista.com/en/support/advisories-notices/security-advisory/22538-security-advisory-0124",
    "id": "CVE-2025-54545",
    "bulletinFamily": "",
    "cwe": [
        "CWE-732"
    ],
    "cvelist": null,
    "sourceData": "Arista Networks DANZ Monitoring Fabric 0\nArista Networks DANZ Monitoring Fabric 0\nArista Networks DANZ Monitoring Fabric 0\nArista Networks DANZ Monitoring Fabric 0\nArista Networks DANZ Monitoring Fabric 0\nArista Networks DANZ Monitoring Fabric 0",
    "sourceHref": "",
    "cvss": {
        "score": 7.8,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "DANZ Monitoring Fabric",
    "version": "0",
    "vendor": "Arista Networks",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

On affected platforms, a restricted user could break out of the CLI sandbox to the system shell and elevate their privileges._CVE-2025-54545