IMPORTANT
SNS 3.x versions have reached End of Maintenance since July 1st, 2024.
We recommend that you update your SNS firewalls to a version with maintenance to guarantee the protection of your infrastructure.
Resolved vulnerabilities in SNS 3.7.11 LTSB
Authentication portal
New checks are now conducted during the verification of parameters used in the URL of the firewall's captive portal.
Details on this vulnerability (CVE-2020-8430) can be found on our website https://advisories.stormshield.eu.
Libfetch library
The vulnerability CVE-2020-7450 was fixed after a security patch was applied to the FreeBSD libfetch library.
Details on this vulnerability can be found on our website https://advisories.stormshield.eu.
Serverd commands
The serverd command CONFIG AUTOUPDATE SERVER has been enhanced so that the use of the "url” parameter is now better monitored.
Web administration interface
New checks are now conducted during the verification of parameters used in the URL of the firewall's web administration interface.
Details on this vulnerability can be found on our website https://advisories.stormshield.eu.