Vendor
Stormshield Network Security
Products
2
CVEs
4
Across products
4
Status
Private
Products
2- 3 CVEs
- 1 CVE
Recent CVEs
4| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2018-20850 | Hig | 0.53 | 8.2 | 0.00 | Jul 4, 2019 | Stormshield Network Security 2.0.0 through 2.13.0 and 3.0.0 through 3.7.1 has self-XSS in the command line interface of the SNS web server. | ||
| CVE-2023-47091 | Hig | 0.49 | 7.5 | 0.01 | Dec 25, 2023 | An issue was discovered in Stormshield Network Security (SNS) SNS 4.3.13 through 4.3.22 before 4.3.23, SNS 4.6.0 through 4.6.9 before 4.6.10, and SNS 4.7.0 through 4.7.1 before 4.7.2. An attacker can overflow the cookie threshold, making an IPsec connection impossible. | ||
| CVE-2021-37613 | Med | 0.42 | 6.5 | 0.00 | Feb 10, 2022 | Stormshield Network Security (SNS) 1.0.0 through 4.2.3 allows a Denial of Service. | ||
| CVE-2021-3398 | Med | 0.38 | 5.8 | 0.01 | Feb 10, 2022 | Stormshield Network Security (SNS) 3.x has an Integer Overflow in the high-availability component. |
- risk 0.53cvss 8.2epss 0.00
Stormshield Network Security 2.0.0 through 2.13.0 and 3.0.0 through 3.7.1 has self-XSS in the command line interface of the SNS web server.
- risk 0.49cvss 7.5epss 0.01
An issue was discovered in Stormshield Network Security (SNS) SNS 4.3.13 through 4.3.22 before 4.3.23, SNS 4.6.0 through 4.6.9 before 4.6.10, and SNS 4.7.0 through 4.7.1 before 4.7.2. An attacker can overflow the cookie threshold, making an IPsec connection impossible.
- risk 0.42cvss 6.5epss 0.00
Stormshield Network Security (SNS) 1.0.0 through 4.2.3 allows a Denial of Service.
- risk 0.38cvss 5.8epss 0.01
Stormshield Network Security (SNS) 3.x has an Integer Overflow in the high-availability component.