CVEs (3)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
In Stormshield SSO Agent 2.x before 2.1.1 and 3.x before 3.0.2, the cleartext user password and PSK are contained in the log file of the .exe installer. |
1Stormshield 1Network Security Nov 21, 2024 Dec 29, 2021 N/A· v4 7.5 HIGH· v3 4.3 MEDIUM· v2 An issue was discovered in Stormshield Network Security (SNS) 4.2.2 through 4.2.7 (fixed in 4.2.8). Under a specific update-migration scenario, the first SSH password change does not properly clear the old password. |
1Stormshield 2Network Security Stormshield Network SecurityNov 21, 2024 May 6, 2021 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 Stormshield SNS with versions before 3.7.18, 3.11.6 and 4.1.6 has a memory-management defect in the SNMP plugin that can lead to excessive consumption of memory and CPU resources, and possibly a denial of service. |