CVE-2021-28096

EUVD-2021-14800
An issue was discovered in Stormshield SNS before 4.2.3 (when the proxy is used). An attacker can saturate the proxy connection table. This would result in the proxy denying any new connections.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.3 MEDIUM
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Base Score
CVSS 3.x
EPSS Score
Percentile: 58%
Affected Products (NVD)
VendorProductVersion
stormshieldstormshield_network_security
2.0.0 ≤
𝑥
≤ 2.7.8
stormshieldstormshield_network_security
3.7.6 ≤
𝑥
≤ 3.7.20
stormshieldstormshield_network_security
3.8.0 ≤
𝑥
≤ 3.11.8
stormshieldstormshield_network_security
4.0.1 ≤
𝑥
< 4.2.3
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://advisories.stormshield.eu/2021-005/
https://advisories.stormshield.eu/2021-005/