Stormshield

Stormshield Network Security

38 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 0.21%
  • Veröffentlicht 02.07.2026 08:42:56
  • Zuletzt bearbeitet 02.07.2026 17:42:54

A vulnerability was discovered on StormShield Network Security 4.3.0 to 4.3.41 (included), 4.8.0 to 4.8.15 (included) , 5.0.0 to 5.0.5 (included) There is a possible leak of secret information if administration commands have been passed with the CLI...

  • EPSS 0.09%
  • Veröffentlicht 01.07.2026 14:52:12
  • Zuletzt bearbeitet 01.07.2026 19:59:44

A vulnerability was discovered on Stormshield Network Security 4.3.0  to 4.3.41 (included), 4.4.0 to 4.8.15 (included) , 5.0.2 EA to 5.0.5 (included) A revoked client certificate can still be used to authenticate to the captive‑admin portal, allow...

  • EPSS 0.18%
  • Veröffentlicht 01.06.2026 09:16:21
  • Zuletzt bearbeitet 01.06.2026 15:17:42

A vulnerability was discovered on Stormshield Network Security  * 4.3.0 to 4.3.41,  * 4.8.0 to 4.8.15,  * 5.0.0 to 5.0.5 It is possible to execute a reflected XSS attack on the login API available on Stormshield SNS appliance by...

  • EPSS 0.32%
  • Veröffentlicht 25.09.2025 18:15:42
  • Zuletzt bearbeitet 14.10.2025 19:43:56

An issue was discovered in Stormshield Network Security (SNS) before 5.0.1. TPM authentication information could, in some HA use cases, be shared among administrators, which can cause secret sharing.

  • EPSS 0.2%
  • Veröffentlicht 15.07.2024 19:15:03
  • Zuletzt bearbeitet 15.04.2026 00:35:42

An issue was discovered in Stormshield Network Security (SNS) 4.0.0 through 4.3.25, 4.4.0 through 4.7.5, and 4.8.0. Certain manipulations allow restarting in single-user mode despite the activation of secure boot. The following versions fix this: 4.3...

  • EPSS 0.41%
  • Veröffentlicht 29.02.2024 01:40:58
  • Zuletzt bearbeitet 14.02.2025 15:52:28

An issue was discovered in Stormshield Network Security (SNS) 3.7.0 through 3.7.38 before 3.7.39, 3.10.0 through 3.11.26 before 3.11.27, 4.0 through 4.3.21 before 4.3.22, and 4.4.0 through 4.6.8 before 4.6.9. An administrator with write access to the...

  • EPSS 0.51%
  • Veröffentlicht 29.02.2024 01:39:48
  • Zuletzt bearbeitet 14.02.2025 15:51:57

In Stormshield Network Security (SNS) 1.0.0 through 3.7.36 before 3.7.37, 3.8.0 through 3.11.24 before 3.11.25, 4.0.0 through 4.3.18 before 4.3.19, 4.4.0 through 4.6.5 before 4.6.6, and 4.7.0 before 4.7.1, the usage of a Network object created from a...

  • EPSS 0.3%
  • Veröffentlicht 26.12.2023 04:15:07
  • Zuletzt bearbeitet 21.11.2024 07:55:40

An issue was discovered in Stormshield Network Security (SNS) before 4.3.17, 4.4.x through 4.6.x before 4.6.4, and 4.7.x before 4.7.1. It affects user accounts for which the password has an equals sign or space character. The serverd process logs suc...

  • EPSS 0.53%
  • Veröffentlicht 25.12.2023 07:15:09
  • Zuletzt bearbeitet 23.04.2025 17:16:39

An issue was discovered in Stormshield Network Security (SNS) SNS 4.3.13 through 4.3.22 before 4.3.23, SNS 4.6.0 through 4.6.9 before 4.6.10, and SNS 4.7.0 through 4.7.1 before 4.7.2. An attacker can overflow the cookie threshold, making an IPsec con...

  • EPSS 0.29%
  • Veröffentlicht 21.12.2023 00:15:26
  • Zuletzt bearbeitet 21.11.2024 08:29:45

An issue was discovered in Stormshield Network Security (SNS) 4.0.0 through 4.3.21, 4.4.0 through 4.6.8, and 4.7.0. Sending a crafted ICMP packet may lead to a crash of the ASQ engine.