CVE-2026-7473: CWE-1023: Incomplete Comparison with Missing Factors in Arista Networks EOS
CVE-2026-7473 is a medium severity vulnerability in Arista Networks EOS affecting versions 4. 31. 0 through 4. 36. 0. The issue arises when a tunnel decapsulation configuration such as VXLAN, decap-groups, or GRE tunnel interfaces is present. The switch incorrectly decapsulates and forwards tunneled packets if the destination IP matches the configured decapsulation IP, without verifying the tunnel protocol type. This can lead to unexpected processing of non-configured tunnel traffic. There is no vendor-provided patch or official remediation guidance available at this time. The vulnerability has not been confirmed as exploited in the wild.
AI Analysis
Technical Summary
Arista EOS versions 4.31.0 to 4.36.0 contain a vulnerability (CVE-2026-7473) where the switch improperly decapsulates tunneled packets when a tunnel decapsulation configuration is present. Specifically, if a tunneled packet's destination IP matches the configured decapsulation IP, the switch forwards the packet without verifying the tunnel protocol type, potentially processing unexpected tunneled traffic. This incomplete comparison flaw is categorized under CWE-1023. No official fix or patch has been documented, and the vulnerability has not been reported as exploited in the wild.
Potential Impact
The vulnerability allows the switch to process tunneled packets that were not intended to be decapsulated, which could lead to unintended forwarding of non-configured tunnel traffic. This may result in limited integrity impact due to unexpected packet processing. Confidentiality and availability impacts are not indicated. The CVSS 3.1 base score is 5.8 (medium severity), reflecting network attack vector, low attack complexity, no privileges or user interaction required, and a scope change with integrity impact only.
Mitigation Recommendations
No official patch or remediation guidance is currently available from the vendor. Patch status is not yet confirmed — users should monitor Arista Networks advisories for updates. Until a fix is released, administrators should carefully review tunnel decapsulation configurations and consider restricting tunnel traffic to trusted sources where possible to reduce exposure.
CVE-2026-7473: CWE-1023: Incomplete Comparison with Missing Factors in Arista Networks EOS
Description
CVE-2026-7473 is a medium severity vulnerability in Arista Networks EOS affecting versions 4. 31. 0 through 4. 36. 0. The issue arises when a tunnel decapsulation configuration such as VXLAN, decap-groups, or GRE tunnel interfaces is present. The switch incorrectly decapsulates and forwards tunneled packets if the destination IP matches the configured decapsulation IP, without verifying the tunnel protocol type. This can lead to unexpected processing of non-configured tunnel traffic. There is no vendor-provided patch or official remediation guidance available at this time. The vulnerability has not been confirmed as exploited in the wild.
CVSS v3.1
Score 5.8medium
Weaknesses
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
Arista EOS versions 4.31.0 to 4.36.0 contain a vulnerability (CVE-2026-7473) where the switch improperly decapsulates tunneled packets when a tunnel decapsulation configuration is present. Specifically, if a tunneled packet's destination IP matches the configured decapsulation IP, the switch forwards the packet without verifying the tunnel protocol type, potentially processing unexpected tunneled traffic. This incomplete comparison flaw is categorized under CWE-1023. No official fix or patch has been documented, and the vulnerability has not been reported as exploited in the wild.
Potential Impact
The vulnerability allows the switch to process tunneled packets that were not intended to be decapsulated, which could lead to unintended forwarding of non-configured tunnel traffic. This may result in limited integrity impact due to unexpected packet processing. Confidentiality and availability impacts are not indicated. The CVSS 3.1 base score is 5.8 (medium severity), reflecting network attack vector, low attack complexity, no privileges or user interaction required, and a scope change with integrity impact only.
Mitigation Recommendations
No official patch or remediation guidance is currently available from the vendor. Patch status is not yet confirmed — users should monitor Arista Networks advisories for updates. Until a fix is released, administrators should carefully review tunnel decapsulation configurations and consider restricting tunnel traffic to trusted sources where possible to reduce exposure.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- Arista
- Date Reserved
- 2026-04-29T20:08:22.118Z
- Cvss Version
- 3.1
- State
- PUBLISHED
- Remediation Level
- null
Threat ID: 6a22fdf6e29bf47b50937395
Added to database: 6/5/2026, 4:48:54 PM
Last enriched: 6/5/2026, 5:03:44 PM
Last updated: 6/5/2026, 5:57:03 PM
Views: 4
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
External Links
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.