CVE-2026-8482

EUVD-2026-41271
A vulnerability was discovered on StormShield Network Security 4.3.0 to 4.3.41 (included), 4.8.0 to 4.8.15 (included) , 5.0.0 to 5.0.5 (included)

There is a possible leak of secret information if administration commands have been passed with the CLI command line tool.

Someone with SSH access to the firewall (if SSH multiuser mode is enabled) could possibly get the proxy CA passphrase or TPM password.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
airbusCNA
4.3 MEDIUM
ADJACENT_NETWORK
LOW
HIGH
CVSS:3.1/AV:A/AC:L/PR:H/UI:R/S:U/C:H/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 11%
Early Detection
Affected products identified ahead of NVD analysis through intelligence sources.
VendorProductVersionSource
stormshieldnetwork_security
4.3.0 ≤
𝑥
≤ 4.3.41
CNA
stormshieldnetwork_security
4.8.0 ≤
𝑥
≤ 4.8.15
CNA
stormshieldnetwork_security
5.0.0 ≤
𝑥
≤ 5.0.5
CNA