Computer vulnerabilities of Airbus Stormshield Network Security

Stormshield Network Security: Cross Site Scripting via Certificate Manipulation
An attacker can trigger a Cross Site Scripting via Certificate Manipulation of Stormshield Network Security, in order to run JavaScript code in the context of the web site...
CERTFR-2020-AVI-618, STORM-2020-012, VIGILANCE-VUL-33360

Stormshield Network Security: Cross Site Scripting via Login Disclaimer
An attacker can trigger a Cross Site Scripting via Login Disclaimer of Stormshield Network Security, in order to run JavaScript code in the context of the web site...
CERTFR-2020-AVI-618, CVE-2020-11711, STORM-2020-011, VIGILANCE-VUL-33359

Node Core: information disclosure via CR-to-Hyphen HTTP Request Smuggling
An attacker can bypass access restrictions to data via CR-to-Hyphen HTTP Request Smuggling of Node Core, in order to obtain sensitive information...
6367943, CERTFR-2020-AVI-680, CVE-2020-8201, FEDORA-2020-43d5a372fc, FEDORA-2020-74bf23e1f1, FEDORA-2020-c605353480, FEDORA-2020-eb942ee0db, openSUSE-SU-2020:1616-1, RHSA-2020:4272-01, RHSA-2020:4903-01, RHSA-2020:5086-01, STORM-2020-027, STORM-2020-028, SUSE-SU-2020:2812-1, SUSE-SU-2020:2813-1, VIGILANCE-VUL-33334

Node Core: buffer overflow via fs.realpath.native
An attacker can trigger a buffer overflow via fs.realpath.native of Node Core, in order to trigger a denial of service, and possibly to run code...
6367943, CERTFR-2020-AVI-680, CVE-2020-8252, FEDORA-2020-43d5a372fc, FEDORA-2020-74bf23e1f1, FEDORA-2020-c605353480, FEDORA-2020-eb942ee0db, openSUSE-SU-2020:1616-1, openSUSE-SU-2020:1660-1, RHSA-2020:4272-01, RHSA-2020:4903-01, RHSA-2020:5086-01, STORM-2020-027, STORM-2020-028, SUSE-SU-2020:2812-1, SUSE-SU-2020:2813-1, SUSE-SU-2020:2823-1, SUSE-SU-2020:2830-1, USN-4548-1, VIGILANCE-VUL-33333

Stormshield Network Security: Cross Site Scripting via Certificate
An attacker can trigger a Cross Site Scripting via Certificate of Stormshield Network Security, in order to run JavaScript code in the context of the web site...
CERTFR-2020-AVI-366, STORM-2019-015, VIGILANCE-VUL-32516

Stormshield Network Security: Cross Site Scripting via Uid Parameter
An attacker can trigger a Cross Site Scripting via Uid Parameter of Stormshield Network Security, in order to run JavaScript code in the context of the web site...
CERTFR-2020-AVI-366, STORM-2020-003, VIGILANCE-VUL-32515

Stormshield Network Security: three vulnerabilities
An attacker can use several vulnerabilities of Stormshield Network Security...
CERTFR-2020-AVI-206, STORM-2020-002, STORM-2020-005, STORM-2020-010, VIGILANCE-VUL-32013

Stormshield Network Security: four vulnerabilities of SMC
An attacker can use several vulnerabilities of Stormshield Network Security...
CERTFR-2020-AVI-177, STORM-2020-006, STORM-2020-007, STORM-2020-008, STORM-2020-009, VIGILANCE-VUL-31904

Intel Processors: information disclosure via Cleanup Errors
An attacker can bypass access restrictions to data via Cleanup Errors of Intel Processors, in order to obtain sensitive information...
6344075, CERTFR-2020-AVI-618, CVE-2020-0548, CVE-2020-0549, DLA-2248-1, DSA-4701-1, FEDORA-2020-11ddbfbdf0, FEDORA-2020-e8835a5f8e, HPESBHF03985, INTEL-SA-00329, JSA11110, openSUSE-SU-2020:0791-1, RHSA-2020:2431-01, RHSA-2020:2432-01, RHSA-2020:2433-01, RHSA-2020:2677-01, RHSA-2020:2679-01, RHSA-2020:2680-01, RHSA-2020:2706-01, RHSA-2020:2707-01, RHSA-2020:2757-01, RHSA-2020:2758-01, RHSA-2020:2771-01, RHSA-2020:2842-01, STORM-2019-026, SUSE-SU-2020:14394-1, USN-4385-1, USN-4385-2, VIGILANCE-VUL-31665

Stormshield Network Security: open redirect via Captive Portal
An attacker can deceive the user via Captive Portal of Stormshield Network Security, in order to redirect him to a malicious site...
CERTFR-2020-AVI-108, CVE-2020-8430, STORM-2020-001, VIGILANCE-VUL-31634

Our database contains other pages. You can request a free trial to read them.

Display information about Airbus Stormshield Network Security:

https://www.stormshield.com/products-services/services/training/sns/