{
  "title": "Arista EOS CVE-2026-7473: KEV Tunneled Packet Decapsulation Bypass",
  "summary": "CISA added actively exploited Arista EOS CVE-2026-7473 to KEV on 2026-06-09. Affected tunnel endpoints may decapsulate unexpected protocols sent to a configured decapsulation IP; Arista rates the issue Medium and provides configuration checks and ACL mitigations.",
  "date": "2026-06-09",
  "severity": "medium",
  "tags": [
    "arista",
    "eos",
    "cisa-kev",
    "segmentation-bypass",
    "network-security"
  ],
  "sources_count": 3,
  "indicators": {
    "slug": "arista-eos-cve-2026-7473-kev",
    "since": "2026-06-09T00:00:00Z",
    "until": "2026-06-09T23:59:59Z",
    "ecosystem": "",
    "cves": [
      "CVE-2026-7473"
    ],
    "cwes": [
      "CWE-1023"
    ],
    "advisoryIds": [],
    "products": [
      "EOS"
    ],
    "packages": [],
    "versions": [],
    "affectedVersions": [],
    "fixedVersions": [
      "none planned (use configuration mitigations)"
    ],
    "files": [],
    "paths": [],
    "services": [],
    "domains": [
      "www.arista.com",
      "www.cisa.gov"
    ],
    "urls": [
      "https://www.arista.com/en/support/advisories-notices/security-advisory/24005-security-advisory-0137",
      "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2026-7473"
    ],
    "ips": [],
    "hashes": [],
    "processPatterns": [],
    "networkPatterns": [],
    "telemetrySelectors": []
  }
}