A vulnerability in Stormshield Network Security has been identified that enables attackers to execute arbitrary code remotely and cause a remote denial of service. The issue affects Stormshield Network Security (SNS) versions 5.0.x prior to 5.0.4 and is listed as CVE‑2025‑31115. The advisory, dated 6 January 2026 and issued by the CERT‑FR (reference CERTFR‑2026‑AVI‑0007), notes that attackers could exploit the flaw from a distance. Users are advised to download and apply the patches published in StormShield’s security bulletin 2025‑010. The bulletin is available on the StormShield advisories website. The government’s National Information System Security Agency released the alert to warn users of the potential impact and recommend timely remediation.
Summary of content from
https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0007/
Made by AI. If you spot anything of concern write us at contact@cybach.com. We’ll promptly correct irregularities.