PT-2023-30301 · Stormshield · Stormshield Network Security
Published
2023-12-20
·
Updated
2023-12-29
·
CVE-2023-47093
CVSS v3.1
6.5
Medium
| Vector | AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Stormshield Network Security (SNS) versions 4.0.0 through 4.3.21
Stormshield Network Security (SNS) versions 4.4.0 through 4.6.8
Stormshield Network Security (SNS) version 4.7.0
Description
An issue was discovered in Stormshield Network Security (SNS). Sending a crafted ICMP packet may lead to a crash of the ASQ engine.
Recommendations
For versions 4.0.0 through 4.3.21, consider disabling the handling of ICMP packets until a patch is available.
For versions 4.4.0 through 4.6.8, restrict access to the ASQ engine to minimize the risk of exploitation.
For version 4.7.0, avoid processing crafted ICMP packets in the ASQ engine until the issue is resolved.
As a temporary workaround, consider implementing network traffic filtering to block malicious ICMP packets.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Stormshield Network Security