VDB
CVE-2023-47093
CVE-2023-47093
PUBLISHED
CVSS 6.5 MEDIUM
An issue was discovered in Stormshield Network Security (SNS) 4.0.0 through 4.3.21, 4.4.0 through 4.6.8, and 4.7.0. Sending a crafted ICMP packet may lead to a crash of the ASQ engine.
EPSS 0.07% · 21.2th percentile
Risk Scores
CVSS 3.1
6.5
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS Score
0.07%
21.2th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| stormshield | stormshield_network_security | 4.7.0, 4.0.0, 4.4.0 |
| n/a | n/a | n/a, n/a |
Timeline
- Dec 18, 2023 CVE Published
- Dec 21, 2023 EPSS Score
- Dec 21, 2023 PoC Published
- Jan 14, 2024 PoC Published
- Jan 19, 2024 EPSS Score
- Feb 17, 2024 EPSS Score
- Mar 17, 2024 EPSS Score
- Apr 15, 2024 EPSS Score
- May 14, 2024 EPSS Score
- Jun 12, 2024 EPSS Score
- Jul 11, 2024 EPSS Score
- Aug 9, 2024 EPSS Score
References
- https://advisories.stormshield.eu/2023-024/ advisory
- https://advisories.stormshield.eu/2023-027/ advisory
- https://advisories.stormshield.eu/2023-031/ advisory
- https://advisories.stormshield.eu/2023-032/ advisory
- https://nvd.nist.gov/vuln/detail/CVE-2023-47093 advisory
- https://advisories.stormshield.eu/2023-031 url