ARP/NDP Management Vulnerability in Stormshield Network Security
CVE-2021-3384

5.3MEDIUM

Key Information:

Vendor: Stormshield
Status: Network Security
Vendor: CVE Published:; 2 March 2021

🔔 Create Stormshield Vulnerability Alert

What is CVE-2021-3384?

A vulnerability in Stormshield Network Security affects ARP/NDP tables management, allowing attackers to disrupt system connections to new hosts via IPv4 or IPv6 for a limited time. This issue encompasses various versions of the software, specifically from 2.0.0 through to 4.1.5. It has been addressed in later versions 2.7.8, 3.7.17, 3.11.5, and 4.2.0, which resolve the problem and enhance network reliability.

References

https://advisories.stormshield.eu/2020-049/

x_refsource_CONFIRM

CVSS V3.1

Score:

5.3

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 2, 2021
Vulnerability Reserved
Feb 1, 2021

CVE-2021-3384 Data

JSON