Stormshield

Network Security

9 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 0.21%
  • Veröffentlicht 02.07.2026 08:42:56
  • Zuletzt bearbeitet 02.07.2026 17:42:54

A vulnerability was discovered on StormShield Network Security 4.3.0 to 4.3.41 (included), 4.8.0 to 4.8.15 (included) , 5.0.0 to 5.0.5 (included) There is a possible leak of secret information if administration commands have been passed with the CLI...

  • EPSS 0.09%
  • Veröffentlicht 01.07.2026 14:52:12
  • Zuletzt bearbeitet 01.07.2026 19:59:44

A vulnerability was discovered on Stormshield Network Security 4.3.0  to 4.3.41 (included), 4.4.0 to 4.8.15 (included) , 5.0.2 EA to 5.0.5 (included) A revoked client certificate can still be used to authenticate to the captive‑admin portal, allow...

  • EPSS 0.18%
  • Veröffentlicht 01.06.2026 09:16:21
  • Zuletzt bearbeitet 01.06.2026 15:17:42

A vulnerability was discovered on Stormshield Network Security  * 4.3.0 to 4.3.41,  * 4.8.0 to 4.8.15,  * 5.0.0 to 5.0.5 It is possible to execute a reflected XSS attack on the login API available on Stormshield SNS appliance by...

  • EPSS 0.28%
  • Veröffentlicht 01.04.2025 17:15:46
  • Zuletzt bearbeitet 15.04.2026 00:35:42

An issue was discovered in Stormshield Network Security (SNS) 4.3.x before 4.3.35. If multicast streams are enabled on different interfaces, it may be possible to interrupt multicast traffic on some of these interfaces. That could result in a denial ...

  • EPSS 0.2%
  • Veröffentlicht 15.07.2024 19:15:03
  • Zuletzt bearbeitet 15.04.2026 00:35:42

An issue was discovered in Stormshield Network Security (SNS) 4.0.0 through 4.3.25, 4.4.0 through 4.7.5, and 4.8.0. Certain manipulations allow restarting in single-user mode despite the activation of secure boot. The following versions fix this: 4.3...

  • EPSS 0.17%
  • Veröffentlicht 15.07.2024 19:15:02
  • Zuletzt bearbeitet 15.04.2026 00:35:42

An issue was discovered in Stormshield Network Security (SNS) 3.7.0 through 3.7.41, 3.10.0 through 3.11.29, 4.0 through 4.3.24, and 4.4.0 through 4.7.4. A user who has access to the SNS with write access on the email alerts page has the ability to cr...

  • EPSS 0.24%
  • Veröffentlicht 17.01.2022 21:15:07
  • Zuletzt bearbeitet 21.11.2024 06:47:17

In Stormshield SSO Agent 2.x before 2.1.1 and 3.x before 3.0.2, the cleartext user password and PSK are contained in the log file of the .exe installer.

  • EPSS 0.89%
  • Veröffentlicht 29.12.2021 17:15:07
  • Zuletzt bearbeitet 21.11.2024 06:33:11

An issue was discovered in Stormshield Network Security (SNS) 4.2.2 through 4.2.7 (fixed in 4.2.8). Under a specific update-migration scenario, the first SSH password change does not properly clear the old password.

  • EPSS 0.99%
  • Veröffentlicht 06.05.2021 20:15:09
  • Zuletzt bearbeitet 21.11.2024 06:00:03

Stormshield SNS with versions before 3.7.18, 3.11.6 and 4.1.6 has a memory-management defect in the SNMP plugin that can lead to excessive consumption of memory and CPU resources, and possibly a denial of service.