CVE-2026-8482
Severity CVSS v4.0:
Pending analysis
Type:
CWE-532
Information Exposure Through Log Files
Publication date:
02/07/2026
Last modified:
02/07/2026
Description
A vulnerability was discovered on StormShield Network Security 4.3.0 to 4.3.41 (included), 4.8.0 to 4.8.15 (included) , 5.0.0 to 5.0.5 (included)<br />
<br />
There is a possible leak of secret information if administration commands have been passed with the CLI command line tool.<br />
<br />
Someone with SSH access to the firewall (if SSH multiuser mode is enabled) could possibly get the proxy CA passphrase or TPM password.
Impact
Base Score 3.x
4.30
Severity 3.x
MEDIUM



