Vulnerabilities > Stormshield > Endpoint Security
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-07-13 | CVE-2021-31222 | Unspecified vulnerability in Stormshield Endpoint Security SES Evolution before 2.1.0 allows updating some parts of a security policy by leveraging access to a computer having the administration console installed. | 2.9 |
| 2021-07-13 | CVE-2021-31223 | Unspecified vulnerability in Stormshield Endpoint Security SES Evolution before 2.1.0 allows reading some parts of a security policy by leveraging access to a computer having the administration console installed. | 2.9 |
| 2021-07-13 | CVE-2021-31224 | Unspecified vulnerability in Stormshield Endpoint Security SES Evolution before 2.1.0 allows duplicating an existing security policy by leveraging access of a user having read-only access to security policies. | 2.9 |
| 2021-07-13 | CVE-2021-35957 | Uncontrolled Search Path Element vulnerability in Stormshield Endpoint Security Stormshield Endpoint Security Evolution 2.0.0 through 2.0.2 does not accomplish the intended defense against local administrators who can replace the Visual C++ runtime DLLs (in %WINDIR%\system32) with malicious ones. | 4.6 |
| 2021-07-13 | CVE-2021-31225 | Unspecified vulnerability in Stormshield Endpoint Security SES Evolution before 2.1.0 allows deleting some resources not currently in use by any security policy by leveraging access to a computer having the administration console installed. | 4.3 |