This page lists publicly disclosed CVE vulnerabilities affecting stormshield network_security (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2022-22703 | In Stormshield SSO Agent 2.x before 2.1.1 and 3.x before 3.0.2, the cleartext user password and PSK are contained in the log file of the .exe installer. | [email protected] | 5.5 | 0.24% | 2022-01-17 | 2024-11-21 |
| CVE-2021-45885 | An issue was discovered in Stormshield Network Security (SNS) 4.2.2 through 4.2.7 (fixed in 4.2.8). Under a specific update-migration scenario, the first SSH password change does not properly clear the old password. | [email protected] | 7.5 | 0.89% | 2021-12-29 | 2024-11-21 |
| CVE-2021-28665 | Stormshield SNS with versions before 3.7.18, 3.11.6 and 4.1.6 has a memory-management defect in the SNMP plugin that can lead to excessive consumption of memory and CPU resources, and possibly a denial of service. | [email protected] | 7.5 | 0.99% | 2021-05-06 | 2024-11-21 |