THREAT OPS › Threat News › CVE-2025-6978: Arbitrary Code Execution in the Arista NG Firewall
CVE-2025-6978: Arbitrary Code Execution in the Arista NG Firewall
<p class=""><em>In this excerpt of a TrendAI Research Services vulnerability report, Jonathan Lein and Simon Humbert of the TrendAI Research team detail a recently patched command injection vulnerability in the Arista NG Firewall. This bug was originally discovered by</em> <em>Gereon Huppertz and reported through the TrendAI Zero Day Initiative (ZDI) program. Successful exploitation could result i
MITRE ATT&CK techniques
- VulnerabilitiesT1588.006
Indicators of compromise
- CVE-2025-6978cve
- CVE-2025-6798cve
- https://www.arista.com/en/support/advisories-notices/security-advisory/22535-security-advisory-0123url
- https://go.trendmicro.com/tis/vulnerabilities.htmlurl
- https://infosec.exchange/@thezdiurl