THREAT OPS › CVEs › CVE-2026-7473
CVE-2026-7473 — Arista Extensible Operating System Incomplete Comparison with Missing Factors Vulnerability
Arista Extensible Operating System (EOS) contains an incomplete comparison with missing factors vulnerability when the switch incorrectly decapsulate and forwards other unexpected tunneled packet with a destination IP matching its configured decapsulation IP.
Vulnerability details
- Affected productsExtensible Operating System
- KEV remediation due2026-06-23
Exploiting threat actors
- Earth LuscaG1006