VPN Blocking and Sensitive Information Disclosure Vulnerability in Stormshield 1.1.0 and 2.1.0 through 2.9.0

VPN Blocking and Sensitive Information Disclosure Vulnerability in Stormshield 1.1.0 and 2.1.0 through 2.9.0

CVE-2021-31814 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H

In Stormshield 1.1.0, and 2.1.0 through 2.9.0, an attacker can block a client from accessing the VPN and can obtain sensitive information through the SN VPN SSL Client.

Learn more about our Web Application Penetration Testing UK.