CVE-2021-28665
moderate-risk
Published 2021-05-06
Stormshield SNS with versions before 3.7.18, 3.11.6 and 4.1.6 has a memory-management defect in the SNMP plugin that can lead to excessive consumption of memory and CPU resources, and possibly a denial of service.
Do I need to act?
-
0.47% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
7
CVSS 7.5/10
High
NETWORK
/ LOW complexity
Affected Products (2)
Network Security
Affected Vendors
References (4)
Broken Link
https://advisories-admin.stormshield.eu/2021-014
Vendor Advisory
https://advisories.stormshield.eu/
Broken Link
https://advisories-admin.stormshield.eu/2021-014
Vendor Advisory
https://advisories.stormshield.eu/
35
/ 100
moderate-risk
Severity
26/34 · High
Exploitability
2/34 · Minimal
Exposure
7/34 · Low