Arista CloudVision Exchange (CVX) Cluster Privilege Escalation via MCS Redis...

8.3 / 10

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L

Description

An authenticated Redis session could be used to obtain full root access to all servers in the CVX cluster. Note that this would require an attacker to have both network access to the Redis service on a CVX server and the Redis password. Please note that all Redis communication, including authentication, occurs over plaintext in the present day. TLS support is tracked under RFE1294850.

Basic Information

ID CVE-2025-5088

Source Arista

Published Jun 5, 2026 at 15:58

Affected Product

Vendor Arista Networks

Product EOS / CloudVision eXchange (CVX)

Version 4.34.0F

Affected Versions Arista Networks EOS / CloudVision eXchange (CVX) 4.34.0F
Arista Networks EOS / CloudVision eXchange (CVX) 4.33.0M
Arista Networks EOS / CloudVision eXchange (CVX) 4.32.0M
Arista Networks EOS / CloudVision eXchange (CVX) 4.31.0M
Arista Networks EOS / CloudVision eXchange (CVX) 4.30.0

CWE Classification

CWE-269

References

www.arista.com /en/support/advisories-notices/security-advisory/22868-security-advisory-0126

{
    "lastseen": "",
    "description": "An authenticated Redis session could be used to obtain full root access to all servers in the CVX cluster. Note that this would require an attacker to have both network access to the Redis service on a CVX server and the Redis password. Please note that all Redis communication, including authentication, occurs over plaintext in the present day. TLS support is tracked under RFE1294850.",
    "published": "2026-06-05T15:58:15.288Z",
    "modified": "2026-06-05T15:58:15.288Z",
    "type": "cve",
    "title": "Arista CloudVision Exchange (CVX) Cluster Privilege Escalation via MCS Redis Session",
    "source": "Arista",
    "references": "https://www.arista.com/en/support/advisories-notices/security-advisory/22868-security-advisory-0126",
    "id": "CVE-2025-5088",
    "bulletinFamily": "",
    "cwe": [
        "CWE-269"
    ],
    "cvelist": null,
    "sourceData": "Arista Networks EOS / CloudVision eXchange (CVX) 4.34.0F\nArista Networks EOS / CloudVision eXchange (CVX) 4.33.0M\nArista Networks EOS / CloudVision eXchange (CVX) 4.32.0M\nArista Networks EOS / CloudVision eXchange (CVX) 4.31.0M\nArista Networks EOS / CloudVision eXchange (CVX) 4.30.0",
    "sourceHref": "",
    "cvss": {
        "score": 8.3,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "EOS / CloudVision eXchange (CVX)",
    "version": "4.34.0F",
    "vendor": "Arista Networks",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Arista CloudVision Exchange (CVX) Cluster Privilege Escalation via MCS Redis Session_CVE-2025-5088