PatchSiren cyber security CVE debrief
CVE-2026-25622 Arista Networks CVE debrief
CVE-2026-25622 is a HIGH severity vulnerability with a CVSS score of 7. An administrative account logged into the user interface can exploit this input handling behavior to execute arbitrary platform shell commands.
- Vendor
- Arista Networks
- Product
- Arista Edge Threat Management - Arista Next Generation Firewall (NGFW)
- CVSS
- HIGH 7
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-06-05
- Original CVE updated
- 2026-06-08
- Advisory published
- 2026-06-05
- Advisory updated
- 2026-06-08
Who should care
Administrators and users of Arista Edge Threat Management - Arista Next Generation Firewall (NGFW) should be aware of this vulnerability.
Technical summary
A Captive Portal Custom Handler command injection vulnerability exists in Arista Edge Threat Management - Arista Next Generation Firewall (NGFW). On affected platforms, an administrative account logged into the user interface can exploit this input handling behavior to execute arbitrary platform shell commands.
Defensive priority
HIGH
Recommended defensive actions
- Apply the patch or upgrade to a non-vulnerable version.
- Refer to the vendor advisory for more information: [ref-4](https://www.arista.com/en/support/advisories-notices/security-advisory/23399-security-advisory-0133)
Evidence notes
The CVE record and NVD detail can be found at: [cve-org](https://www.cve.org/CVERecord?id=CVE-2026-25622) and [nvd](https://nvd.nist.gov/vuln/detail/CVE-2026-25622).
Official resources
-
CVE-2026-25622 CVE record
CVE.org
-
CVE-2026-25622 NVD detail
NVD
-
Source item URL
nvd_modified
-
Mitigation or vendor reference
[email protected] - Vendor Advisory
CVE-2026-25622 was published on 2026-06-05T20:17:30.820Z and modified on 2026-06-08T19:10:56.303Z.