Vulnerabilities > Stormshield > Endpoint Security > Medium

DATE CVE VULNERABILITY TITLE RISK
2021-07-13 CVE-2021-31223 Unspecified vulnerability in Stormshield Endpoint Security 2.0.0/2.0.2
SES Evolution before 2.1.0 allows reading some parts of a security policy by leveraging access to a computer having the administration console installed.
low complexity
stormshield
5.7
2021-07-13 CVE-2021-35957 Uncontrolled Search Path Element vulnerability in Stormshield Endpoint Security 2.0.0/2.0.2
Stormshield Endpoint Security Evolution 2.0.0 through 2.0.2 does not accomplish the intended defense against local administrators who can replace the Visual C++ runtime DLLs (in %WINDIR%\system32) with malicious ones.
local
low complexity
stormshield CWE-427
6.7