CVE-2021-3384

Name of the Vulnerable Software and Affected Versions: Stormshield Network Security versions 2.0.0 through 2.7.7 Stormshield Network Security versions 2.8.0 through 2.16.0 Stormshield Network Security versions 3.0.0 through 3.7.16 Stormshield Network Security versions 3.8.0 through 3.11.4 Stormshield Network Security versions 4.0.0 through 4.1.5

Description: A vulnerability in Stormshield Network Security could allow an attacker to trigger a protection related to ARP/NDP tables management, which would temporarily prevent the system from contacting new hosts via IPv4 or IPv6.

Recommendations: For versions 2.0.0 through 2.7.7, update to version 2.7.8 or later. For versions 2.8.0 through 2.16.0, update to version 3.7.17 or later, but since 2.16.0 is before 3.0.0, the correct update path would be to first reach version 3.0.0 and then update to 3.7.17 or later. For versions 3.0.0 through 3.7.16, update to version 3.7.17 or later. For versions 3.8.0 through 3.11.4, update to version 3.11.5 or later. For versions 4.0.0 through 4.1.5, update to version 4.2.0 or later.