THREATOPS
THREAT OPSThreat News › CVE-2025-6978: Arbitrary Code Execution in the Arista NG Firewall

CVE-2025-6978: Arbitrary Code Execution in the Arista NG Firewall

lowzdi_blogPublished 2026-02-05

<p class=""><em>In this excerpt of a TrendAI Research Services vulnerability report, Jonathan Lein and Simon Humbert of the TrendAI Research team detail a recently patched command injection vulnerability in the Arista NG Firewall. This bug was originally discovered by</em> <em>Gereon Huppertz and reported through the TrendAI Zero Day Initiative (ZDI) program. Successful exploitation could result i

MITRE ATT&CK techniques

Indicators of compromise

Original source: https://www.thezdi.com/blog/2026/2/4/cve-2025-6978-arbitrary-code-execution-in-the-arista-ng-firewall