CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-30279

An issue was discovered in Stormshield Network Security (SNS) 4.3.x before 4.3.8. The event logging of the ASQ sofbus lacbus plugin triggers the dereferencing of a NULL pointer, leading to a crash of SNS. An attacker could exploit this vulnerability via forged sofbus lacbus traffic to cause a firmware crash.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 48.3%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 5.0

References

Products affected by CVE-2022-30279

Stormshield » Stormshield Network Security » Version: 4.3.3

cpe:2.3:a:stormshield:stormshield_network_security:4.3.3
Stormshield » Stormshield Network Security » Version: 4.3.4

cpe:2.3:a:stormshield:stormshield_network_security:4.3.4
Stormshield » Stormshield Network Security » Version: 4.3.5

cpe:2.3:a:stormshield:stormshield_network_security:4.3.5
Stormshield » Stormshield Network Security » Version: 4.3.6

cpe:2.3:a:stormshield:stormshield_network_security:4.3.6
Stormshield » Stormshield Network Security » Version: 4.3.7

cpe:2.3:a:stormshield:stormshield_network_security:4.3.7

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-30279

Products

Pricing

Contact Us