SNS XSS
| Advisory ID |
CVE Number |
Date discovered |
Severity |
Advisory revision |
| STORM-2018-006 |
|
10/19/2018 |
low |
v4 |
Vulnerability details
A self-XSS has been found in the command line interface of the SNS web interface.
Impacted products
Revisions
| Version |
Date |
Description |
| v1 |
02/07/2019 |
Initial release |
| v2 |
02/08/2019 |
Fix issue about SNS 2.13 being impacted |
| v3 |
30/12/2019 |
Add fix version SNS 2.14 |
| v4 |
07/01/2020 |
Decrease the CVSS score: an SNS administrator can only impacts his own session |
Stormshield Network Security |
CVSS v2 Overall Score: 0.8 
|
Analysis
|
Impacted version
|
|
A self-XSS has been found in the command line interface of the SNS web interface. It allows an attacker that already has access to the administration interface to inject javascript code. The javascript code will be persisted during login/logout from the administration interface. It could be used by an attacker as a backdoor and thus persist his access to the system.
|
- SNS 3.0.0 to 3.7.1
- SNS 2.0.0 to 2.13.0
|
Workaround solution
|
Solution
|
|
The use of password-based authentication instead of certificate-based authentication deactivates the vulnerability.
|
The 2.14, 3.7.2 and 3.8.0 updates fix this vulnerability.
|
| Access vector |
Access complexity |
Authentication |
Confidentiality impact |
Integrity impact |
Availability impact |
| Local |
High |
Single |
None |
Partial |
None |
| Exploitability |
Remediation Level |
Report Confidence |
| Proof of concept code |
Official fix |
Confirmed |
| Collateral Damage Potential |
Target Distribution |
| None |
High [76-100%] |
