CVE-2026-8480
Received Received - Intake

Revoked Client Certificate Authentication Bypass in Stormshield Network Security

Vulnerability report for CVE-2026-8480, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.

Publication date: 2026-07-01

Last updated on: 2026-07-01

Assigner: Airbus

Description

A vulnerability was discovered on Stormshield Network Security 4.3.0  to 4.3.41 (included), 4.4.0 to 4.8.15 (included) , 5.0.2 EA to 5.0.5 (included) A revoked client certificate can still be used to authenticate to the captive‑admin portal, allowing an attacker who possesses the revoked certificate to gain administrative access.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2026-07-01
Last Modified
2026-07-01
Generated
2026-07-01
AI Q&A
2026-07-01
EPSS Evaluated
N/A
NVD
EUVD

Affected Vendors & Products

Showing 3 associated CPEs
Vendor Product Version / Range
stormshield network_security From 4.3.0 (inc) to 4.3.41 (inc)
stormshield network_security From 4.4.0 (inc) to 4.8.15 (inc)
stormshield network_security From 5.0.2 (inc) to 5.0.5 (inc)

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-295 The product does not validate, or incorrectly validates, a certificate.

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Compliance Impact

This vulnerability allows an attacker possessing a revoked client certificate to gain administrative access to the Stormshield Network Security captive-admin portal, potentially exposing confidential information.

Such unauthorized administrative access could lead to breaches of confidentiality, which may impact compliance with standards and regulations like GDPR and HIPAA that require protection of sensitive data and strict access controls.

However, the provided information does not explicitly discuss the direct impact on compliance with these regulations.

Executive Summary

This vulnerability allows a revoked client certificate to still be used to authenticate to the Stormshield Network Security administration portal. Essentially, an attacker who possesses a revoked certificate can gain administrative access to the portal despite the certificate being revoked.

Impact Analysis

The vulnerability can impact you by allowing an attacker with a revoked certificate to gain unauthorized administrative access to the Stormshield Network Security portal. This compromises the confidentiality of the system, as sensitive administrative functions could be accessed without proper authorization.

Detection Guidance

This vulnerability can be detected by verifying if revoked client certificates are still able to authenticate to the Stormshield Network Security administration portal.

A practical approach is to test authentication attempts using revoked certificates to see if access is granted, indicating the vulnerability is present.

There is no specific detection command mentioned, but administrators can use the 'nrestart sld' command after revoking certificates to ensure the system properly invalidates them.

Mitigation Strategies

To mitigate this vulnerability immediately, administrators should run the command 'nrestart sld' after revoking any client certificates.

Alternatively, disabling certificate-based authentication can also prevent exploitation of this issue.

For a permanent fix, updating Stormshield Network Security to versions 5.0.6, 4.8.16, or 4.3.42 where the vulnerability is resolved is recommended.

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-8480. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart