Stormshield Network Security
Easy fix4 remedies
cpe:2.3:a:stormshield:stormshield_network_security:*:*:*:*:*:*:*
Easy fix4 remedies
- >= 4.3.0, <= 4.3.39
- >= 4.7.0, <= 4.7.10
- >= 4.8.0, <= 4.8.11
- 5.0.0
Stormshield Network Security TPM Authentication Information Leak Vulnerability
Vulnerability
Patched
A vulnerability exists in Stormshield Network Security (SNS) versions prior to 5.0.1, where TPM authentication information could be inadvertently shared among administrators in certain high availability (HA) scenarios. This sharing could lead to unauthorized secret sharing. The issue arises when verbose logging is enabled, which is not the default setting. In such cases, sensitive authentication details may be exposed through system files.
Impact
The vulnerability allows for a low-severity information leak of TPM authentication details between administrators, which could lead to unauthorized sharing of secrets.
Remediation
To address this vulnerability, administrators can update to SNS versions 4.3.40, 4.8.12, or 5.0.1. If an immediate update is not possible, verbose logging can be disabled in the ConfigFiles/serverd file to prevent the information leak.
Added: Sep 25, 2025, 6:20 PM
Updated: Sep 25, 2025, 6:20 PM
Vulnerability Rating
Custom Algorithm
spread
2.6impact
2.5exploitability
3.0remediation
8.3relevance
0.6threat
0.0urgency
2.9incentive
1.7Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.