| Title | Stormshield Network Security における脆弱性 |
|---|---|
| Summary | Stormshield Network Security には、不特定の脆弱性が存在します。 |
| Possible impacts | サービス運用妨害 (DoS) 状態にされる可能性があります。 |
| Solution | ベンダより正式な対策が公開されています。ベンダ情報を参照して適切な対策を実施してください。 |
| Publication Date | March 1, 2021, midnight |
| Registration Date | Nov. 10, 2021, 3:23 p.m. |
| Last Update | Nov. 10, 2021, 3:23 p.m. |
| CVSS3.0 : 警告 | |
| Score | 5.3 |
|---|---|
| Vector | CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L |
| CVSS2.0 : 警告 | |
| Score | 5 |
|---|---|
| Vector | AV:N/AC:L/Au:N/C:N/I:N/A:P |
| Stormshield |
| Stormshield Network Security 2.0.0 から 2.7.7 |
| Stormshield Network Security 2.8.0 から 2.16.0 |
| Stormshield Network Security 3.0.0 から 3.7.16 |
| Stormshield Network Security 3.8.0 から 3.11.4 |
| Stormshield Network Security 4.0.0 から 4.1.5 |
| No | Changed Details | Date of change |
|---|---|---|
| 1 | [2021年11月10日] 掲載 |
Nov. 10, 2021, 3:23 p.m. |
| Summary | A vulnerability in Stormshield Network Security could allow an attacker to trigger a protection related to ARP/NDP tables management, which would temporarily prevent the system to contact new hosts via IPv4 or IPv6. This affects versions 2.0.0 to 2.7.7, 2.8.0 to 2.16.0, 3.0.0 to 3.7.16, 3.8.0 to 3.11.4, and 4.0.0 to 4.1.5. Fixed in versions 2.7.8, 3.7.17, 3.11.5, and 4.2.0. |
|---|---|
| Publication Date | March 3, 2021, 3:15 a.m. |
| Registration Date | March 3, 2021, 10:03 a.m. |
| Last Update | Nov. 21, 2024, 3:21 p.m. |
| Configuration1 | or higher | or less | more than | less than | |
| cpe:2.3:a:stormshield:stormshield_network_security:*:*:*:*:*:*:*:* | 2.8.0 | 2.16.0 | |||
| cpe:2.3:a:stormshield:stormshield_network_security:*:*:*:*:*:*:*:* | 4.0.0 | 4.1.5 | |||
| cpe:2.3:a:stormshield:stormshield_network_security:*:*:*:*:*:*:*:* | 3.0.0 | 3.7.17 | |||
| cpe:2.3:a:stormshield:stormshield_network_security:*:*:*:*:*:*:*:* | 2.0.0 | 2.7.8 | |||
| cpe:2.3:a:stormshield:stormshield_network_security:*:*:*:*:*:*:*:* | 3.8.0 | 3.11.5 | |||