Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in Stormshield Network Security (SNS) before 4.3.17, 4.4.x through 4.6.x before 4.6.4, and 4.7.x before 4.7.1. It affects user accounts for which the password has an equals sign or space character. The serverd process logs such passwords in cleartext, and potentially sends these logs to the Syslog component.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Stormshield Network Security 安全漏洞
Vulnerability Description
Stormshield Network Security是法国Stormshield公司的一款下一代UTM(统一威胁管理)防火墙。 Stormshield Network Security (SNS) 4.3.17 之前、4.6.4 之前、4.7.1 之前版本存在安全漏洞,该漏洞源于serverd 进程以明文形式记录具有等号或空格字符的用户帐户密码,并可能将这些日志发送到 Syslog 组件。
CVSS Information
N/A
Vulnerability Type
N/A