CVE Catalog

CVE-2026-25623

MediumCVSS 6.0
Published: Updated: Translated: NVD NIST

Summary

An input validation command execution vulnerability exists in the browser management pipeline of Arista Edge Threat Management - Arista Next Generation Firewall (NGFW). Authenticated administrators can leverage this exposure to obtain underlying terminal script code processing execution permissions.

Risk Assessment

The organization may be exposed to unauthorized code execution, potentially leading to serious security breaches.

Recommendation

It is recommended to update the software to the latest version and implement additional access control measures for administrators.

Original NVD description (English source)

An input validation command execution vulnerability exists in the browser management pipeline of Arista Edge Threat Management - Arista Next Generation Firewall (NGFW). Authenticated administrators can leverage this exposure to obtain underlying terminal script code processing execution permissions.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS