Vulnerability in Stormshield Network Security Products
CVE-2023-26095

7.5HIGH

Key Information:

Vendor: Stormshield
Status: Network Security
Vendor: CVE Published:; 28 August 2023

🔔 Create Stormshield Vulnerability Alert

What is CVE-2023-26095?

A vulnerability has been identified in Stormshield Network Security (SNS) versions 4.3.15 and earlier, as well as 4.6.x prior to version 4.6.3. This flaw allows an attacker to craft a malicious SIP packet that can cause the affected SNS products to crash, potentially disrupting network operations. Users are advised to upgrade to the latest versions to safeguard their systems against this vulnerability.

References

https://advisories.stormshield.eu/2023-007/

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 28, 2023
Vulnerability Reserved
Feb 20, 2023

CVE-2023-26095 Data

JSON