Vulnerabilities > Stormshield > High

DATE CVE VULNERABILITY TITLE RISK
2020-10-06 CVE-2020-7466 Out-of-bounds Read vulnerability in multiple products
The PPP implementation of MPD before 5.9 allows a remote attacker who can send specifically crafted PPP authentication message to cause the daemon to read beyond allocated memory buffer, which would result in a denial of service condition.
network
low complexity
mpd-project stormshield CWE-125
7.5
2019-07-04 CVE-2018-20850 Cross-site Scripting vulnerability in Stormshield Network Security
Stormshield Network Security 2.0.0 through 2.13.0 and 3.0.0 through 3.7.1 has self-XSS in the command line interface of the SNS web server.
local
low complexity
stormshield CWE-79
8.2