CVE-2026-25622: ng firewall vulnerability

A Captive Portal Custom Handler command injection vulnerability exists in Arista Edge Threat Management - Arista Next Generation Firewall (NGFW). On affected platforms, an administrative account logged into the user interface can exploit this input handling...
CVE-2026-25622CVSS 7.0Firewall

CVE-2026-25622: ng firewall vulnerability

A Captive Portal Custom Handler command injection vulnerability exists in Arista Edge Threat Management - Arista Next Generation Firewall (NGFW). On affected platforms, an administrative account logged into the user interface can exploit this input handling...

CVSS
7.0 HIGH
EPSS
95.12%
Known exploited
not in KEV
Product
ng firewall

What is known

A Captive Portal Custom Handler command injection vulnerability exists in Arista Edge Threat Management - Arista Next Generation Firewall (NGFW). On affected platforms, an administrative account logged into the user interface can exploit this input handling behavior to execute arbitrary platform shell commands.

Sources