STIGQter: STIG Summary: Arista MLS DCS-7000 Series NDM Security Technical Implementation Guide Version: 1 Release: 3 Benchmark Date: 25 Oct 2019:

The Arista Multilayer Switch must be updated to one of the minimum approved versions of EOS.

DISA Rule

SV-81685r1_rule

Vulnerability Number

V-67195

Group Title

SRG-APP-000516-NDM-000317

Rule Version

AMLS-NM-000500

Severity

CAT III

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.

Weight

10

Fix Recommendation

Configure the Arista Multilayer Switch to use an approved software version. Download the approved version from www.arista.com/support, copy the .swi file to flash via an approved file transfer mechanism, and then enter:

Enable
Configure
Boot system flash:<your_image.swi>
Write memory
reload

Check Contents

Verify the Arista Multilayer Switch configuration using the “Show version” command. Review the software image version, and verify it is a minimum DoD-approved version. The current approved minimum versions are 4.16.0F, 4.15.3F, 4.14.11M, or later. If the Arista Multilayer Switch is not using a minimum approved versions of EOS, this is a finding.

Vulnerability Number

V-67195

Documentable

False

Rule Version

AMLS-NM-000500

Severity Override Guidance

Verify the Arista Multilayer Switch configuration using the “Show version” command. Review the software image version, and verify it is a minimum DoD-approved version. The current approved minimum versions are 4.16.0F, 4.15.3F, 4.14.11M, or later. If the Arista Multilayer Switch is not using a minimum approved versions of EOS, this is a finding.

Check Content Reference

M

Target Key

2825

Comments