PT-2025-39437 · Stormshield · Stormshield Network Security
Published
2025-09-25
·
Updated
2025-09-26
·
CVE-2025-48707
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Stormshield Network Security (SNS) versions prior to 5.0.1
Description
An issue exists in Stormshield Network Security (SNS) where TPM authentication information could be shared among administrators in certain High Availability (HA) configurations, potentially leading to secret sharing.
Recommendations
Update to version 5.0.1 or later.
Fix
Improper Access Control
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Stormshield Network Security