CVE-2021-28096

An issue was discovered in Stormshield SNS before 4.2.3 (when the proxy is used). An attacker can saturate the proxy connection table. This would result in the proxy denying any new connections.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5.3 MEDIUM
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 58%
VendorProductVersion
stormshieldstormshield_network_security
2.0.0 ≤
𝑥
≤ 2.7.8
stormshieldstormshield_network_security
3.7.6 ≤
𝑥
≤ 3.7.20
stormshieldstormshield_network_security
3.8.0 ≤
𝑥
≤ 3.11.8
stormshieldstormshield_network_security
4.0.1 ≤
𝑥
< 4.2.3
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://advisories.stormshield.eu/2021-005/
https://advisories.stormshield.eu/2021-005/