ICMP Packet Vulnerability in Stormshield Network Security
CVE-2023-47093

6.5MEDIUM

Key Information:

Vendor: Stormshield
Status: Stormshield Network Security
Vendor: CVE Published:; 20 December 2023

🔔 Create Stormshield Vulnerability Alert

What is CVE-2023-47093?

A vulnerability has been discovered in Stormshield Network Security products, specifically versions 4.0.0 to 4.3.21, 4.4.0 to 4.6.8, and 4.7.0. This issue arises from the improper handling of crafted ICMP packets, which may cause a crash of the ASQ engine, potentially leading to interruptions in service and network security functionalities. Users are advised to review the advisory provided by Stormshield for further details and remediation steps.

References

https://advisories.stormshield.eu/2023-031/

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 20, 2023
Vulnerability Reserved
Oct 30, 2023

CVE-2023-47093 Data

JSON