THREATOPS
THREAT OPSCVEs › CVE-2026-7473

CVE-2026-7473 — Arista Extensible Operating System Incomplete Comparison with Missing Factors Vulnerability

CISA KEVExploited: confirmedArista

Arista Extensible Operating System (EOS) contains an incomplete comparison with missing factors vulnerability when the switch incorrectly decapsulate and forwards other unexpected tunneled packet with a destination IP matching its configured decapsulation IP.

Vulnerability details

Exploiting threat actors

Related reporting