exploitDog

GHSA-ch6f-2w93-3p64

Опубликовано: 25 дек. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

An issue was discovered in Stormshield Network Security (SNS) SNS 4.3.13 through 4.3.22 before 4.3.23, SNS 4.6.0 through 4.6.9 before 4.6.10, and SNS 4.7.0 through 4.7.1 before 4.7.2. An attacker can overflow the cookie threshold, making an IPsec connection impossible.

An issue was discovered in Stormshield Network Security (SNS) SNS 4.3.13 through 4.3.22 before 4.3.23, SNS 4.6.0 through 4.6.9 before 4.6.10, and SNS 4.7.0 through 4.7.1 before 4.7.2. An attacker can overflow the cookie threshold, making an IPsec connection impossible.

Ссылки

EPSS

Процентиль: 40%

0.00179

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-120

Связанные уязвимости

CVE-2023-47091

CVSS3: 7.5

nvd

около 2 лет назад

An issue was discovered in Stormshield Network Security (SNS) SNS 4.3.13 through 4.3.22 before 4.3.23, SNS 4.6.0 through 4.6.9 before 4.6.10, and SNS 4.7.0 through 4.7.1 before 4.7.2. An attacker can overflow the cookie threshold, making an IPsec connection impossible.

EPSS

Процентиль: 40%

0.00179

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-120