Vulnerabilities > CVE-2021-31224 - Unspecified vulnerability in Stormshield Endpoint Security

CVSS 2.9 - LOW

Attack vector

ADJACENT_NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

PARTIAL

Availability impact

NONE

stormshield

NVD

Published: 2021-07-13

Updated: 2021-07-15

Summary

SES Evolution before 2.1.0 allows duplicating an existing security policy by leveraging access of a user having read-only access to security policies.

Vulnerable Configurations

Part	Description	Count
Application	Stormshield Stormshield Endpoint Security *	1

References

https://advisories.stormshield.eu/2021-026/
https://advisories.stormshield.eu