CVE-2023-28616 | Stormshield Network Security Services up to 4.3.16/4.6.3/4.7.0 Syslog missing encryption

Posted by Angelo Barbosa | Dec 26, 2023 | CVE

A vulnerability, which was classified as problematic, has been found in Stormshield Network Security Services up to 4.3.16/4.6.3/4.7.0. This issue affects some unknown processing of the component Syslog. The manipulation leads to missing encryption of sensitive data.

The identification of this vulnerability is CVE-2023-28616. Attacking locally is a requirement. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-28616 | Stormshield Network Security Services up to 4.3.16/4.6.3/4.7.0 Syslog missing encryption

Related Posts

CVE-2024-23459 | Zscaler Client Connector up to 3.6 on macOS link following

CVE-2023-26323 | Xiaomi App Market up to 4.57.4 Configuration

CVE-2024-39744 | IBM Sterling Connect Direct Web Services 6.0/6.1/6.2/6.3 cross-site request forgery (XFDB-297236)

CVE-2023-6989 | Shield Security Plugin up to 18.5.9 on WordPress file inclusion