← Back

CVE-2021-28665

nvd nist
Published: May 6, 2021Modified: Nov 21, 2024

JSON object

Loading...
7.5
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Exploitability: 3.9 / Impact: 3.6
Source: NVD

Description

Stormshield SNS with versions before 3.7.18, 3.11.6 and 4.1.6 has a memory-management defect in the SNMP plugin that can lead to excessive consumption of memory and CPU resources, and possibly a denial of service.

Affected (3)

Stormshield
2 products
Network Security
Stormshield Network Security
Configuration A
3 vulnerable
Vulnerable SoftwareAffected Versions
Network Security
From 3.0.0 to 3.7.18
Stormshield
Stormshield Network Security
From 3.8.0 to 3.11.5
Stormshield Network Security
From 4.0.0 to 4.1.5

Related CWEs

CWE-401
Missing Release of Memory after Effective Lifetime
The product does not sufficiently track and release allocated memory after it has been used, which slowly consumes remaining memory.

References (4)

Source: cve@mitre.org
Broken Link
Source: cve@mitre.org
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory

Timeline

No history available yet.