Loading market data...
← Back to CVE feed

CVE-2026-8480

MEDIUM CVSS 4.3 View on NVD ↗

Description

A vulnerability was discovered on Stormshield Network Security 4.3.0  to 4.3.41 (included), 4.4.0 to 4.8.15 (included) , 5.0.2 EA to 5.0.5 (included) A revoked client certificate can still be used to authenticate to the captive‑admin portal, allowing an attacker who possesses the revoked certificate to gain administrative access.

CVSS Vector

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Published: Jul 01, 2026 16:16 UTC Modified: Jul 01, 2026 19:59 UTC