CVE-2018-20850

Stormshield Network Security 2.0.0 through 2.13.0 and 3.0.0 through 3.7.1 has self-XSS in the command line interface of the SNS web server...

CVE-2018-20850

Stormshield Network Security versions 2.0.0–2.13.0 and 3.0.0–3.7.1 contain a self‑XSS vulnerability in the SNS web server's command‑line interface. The issue stems from a lack of proper validation in the web application, enabling local attackers to trigger client‑side script execution. No remedia...