CVE-2021-3384
Summary
| CVE | CVE-2021-3384 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2021-03-02 18:15:00 UTC |
| Updated | 2021-03-09 18:30:00 UTC |
| Description | A vulnerability in Stormshield Network Security could allow an attacker to trigger a protection related to ARP/NDP tables management, which would temporarily prevent the system to contact new hosts via IPv4 or IPv6. This affects versions 2.0.0 to 2.7.7, 2.8.0 to 2.16.0, 3.0.0 to 3.7.16, 3.8.0 to 3.11.4, and 4.0.0 to 4.1.5. Fixed in versions 2.7.8, 3.7.17, 3.11.5, and 4.2.0. |
Risk And Classification
Problem Types: NVD-CWE-noinfo
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Stormshield | Network Security | All | All | All | All |
| Application | Stormshield | Network Security | All | All | All | All |
| Application | Stormshield | Network Security | All | All | All | All |
| Application | Stormshield | Network Security | All | All | All | All |
| Application | Stormshield | Network Security | All | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Mishandling of IPv6 NDP timeout (CVE-2021-3384) | Stormshield security | CONFIRM | advisories.stormshield.eu | Vendor Advisory |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.