DoS on multicast routing
Vulnerability details
On some static multicast configuration, it’s possible to stop multicast trafic by sending particuliar requests to the firewall.
Impacted products
Revisions
Version |
Date |
Description |
v1 |
03/27/2025 |
Initial release |
Stormshield Network Security |
CVSS v3.1 Overall Score: 4.8 
|
Analysis
|
Impacted version
|
According to the multicast configuration applied on the SNS firewall, it may be possible to disrupt the multicast routing service currently running, resulting in a denial of service (DoS) of multicast routing.
|
|
Workaround solution
|
Solution
|
There is no workaround solution.
|
The following SNS firmware versions fix this vulnerability:
|
Attack Vector |
Attack Complexity |
Privileges Required |
User Interaction |
Scope |
Confidentiality Impact |
Integrity Impact |
Availability impact |
Network |
Low |
None |
None |
Unchanged |
None |
None |
Low |
Exploit Code Maturity |
Remediation Level |
Report Confidence |
Proof of concept code |
Official fix |
Confirmed |
Confidentiality Requirement |
Integrity Requirement |
Availability Requirement |
Medium |
Medium |
Medium |