Known Vulnerabilities for Stormshield Network Security by Stormshield

Listed below are 10 of the newest known vulnerabilities associated with "Stormshield Network Security" by "Stormshield".

These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.

Data on known vulnerable versions is also displayed based on information from known CPEs

Known Vulnerabilities

CVE	Shortened Description	Severity	Publish Date	Last Modified
CVE-2021-37613	Stormshield Network Security (SNS) 1.0.0 through 4.2.3 allows a Denial of Service.	6.5 - MEDIUM	2022-02-10	2022-02-17
CVE-2021-31814	In Stormshield 1.1.0, and 2.1.0 through 2.9.0, an attacker can block a client from accessing the VPN and can obtain sensitive...	6.1 - MEDIUM	2022-02-10	2023-08-08
CVE-2021-28127	An issue was discovered in Stormshield SNS through 4.2.1. A brute-force attack can occur.	7.5 - HIGH	2021-07-01	2021-07-07
CVE-2021-28096	An issue was discovered in Stormshield SNS before 4.2.3 (when the proxy is used). An attacker can saturate the proxy connecti...	5.3 - MEDIUM	2022-01-27	2022-02-04
CVE-2021-3398	Stormshield Network Security (SNS) 3.x has an Integer Overflow in the high-availability component.	5.8 - MEDIUM	2022-02-10	2022-02-23
CVE-2020-11711	An issue was discovered in Stormshield SNS 3.8.0. Authenticated Stored XSS in the admin login panel leads to SSL VPN credenti...	4.8 - MEDIUM	2023-08-25	2023-08-31
CVE-2020-8430	Stormshield Network Security 310 3.7.10 devices have an auth/lang.html?rurl= Open Redirect vulnerability on the captive porta...	6.1 - MEDIUM	2020-04-13	2021-06-22
CVE-2020-7466	The PPP implementation of MPD before 5.9 allows a remote attacker who can send specifically crafted PPP authentication messag...	7.5 - HIGH	2020-10-06	2023-07-19
CVE-2020-7465	The L2TP implementation of MPD before 5.9 allows a remote attacker who can send specifically crafted L2TP control packet with...	9.8 - CRITICAL	2020-10-06	2023-07-19
CVE-2018-20850	Stormshield Network Security 2.0.0 through 2.13.0 and 3.0.0 through 3.7.1 has self-XSS in the command line interface of the S...	8.2 - HIGH	2019-07-04	2019-07-08

Results limited to 10 most recent vulnerabilities

Known Affected Configurations (CPE V2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Application	Stormshield	Stormshield Network Security	4.0.1	All	All	All
Application	Stormshield	Stormshield Network Security	3.9.1	All	All	All
Application	Stormshield	Stormshield Network Security	3.8.1	All	All	All
Application	Stormshield	Stormshield Network Security	3.8.0	All	All	All
Application	Stormshield	Stormshield Network Security	3.7.1	All	All	All
Application	Stormshield	Stormshield Network Security	3.7.0	All	All	All
Application	Stormshield	Stormshield Network Security	3.6.1	All	All	All
Application	Stormshield	Stormshield Network Security	3.6.0	All	All	All
Application	Stormshield	Stormshield Network Security	3.5.2	All	All	All
Application	Stormshield	Stormshield Network Security	3.5.1	All	All	All
Application	Stormshield	Stormshield Network Security	3.5.0	All	All	All
Application	Stormshield	Stormshield Network Security	3.4.3	All	All	All
Application	Stormshield	Stormshield Network Security	3.4.2	All	All	All
Application	Stormshield	Stormshield Network Security	3.4.1	All	All	All
Application	Stormshield	Stormshield Network Security	3.4.0	All	All	All
Application	Stormshield	Stormshield Network Security	3.3.2	All	All	All
Application	Stormshield	Stormshield Network Security	3.3.1	All	All	All
Application	Stormshield	Stormshield Network Security	3.3.0	All	All	All
Application	Stormshield	Stormshield Network Security	3.2.1	All	All	All
Application	Stormshield	Stormshield Network Security	3.2.0	All	All	All

Results limited to 20 most recent known configurations