CVE-2021-28504

On Arista Strata family products which have “TCAM profile� feature enabled when Port IPv4 access-list has a rule which matches on “vxlan� as protocol then that rule and subsequent rules ( rules declared after it in ACL ) do not match on IP protocol field as expected.

Source: CVE-2021-28504