Lucene search
HistoryMay 01, 2015 - 3:59 p.m.
CVE-2015-3446
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
7.4 High
AI Score
Confidence
High
0.531 Medium
EPSS
Percentile
97.6%
The Framework Daemon in AlienVault Unified Security Management before 4.15 allows remote attackers to execute arbitrary Python code via a crafted plugin configuration file (.cfg).
Affected configurations
Node
alienvaultunified_security_managementRange≤4.14
Related
zdi
zdi
prion
prion
Code injection
2015-05-01 15:59:00
cvelist
cvelist
CVE-2015-3446
2015-05-01 15:00:00
cve
cve
CVE-2015-3446
2015-05-01 15:59:08
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
7.4 High
AI Score
Confidence
High
0.531 Medium
EPSS
Percentile
97.6%
Related for NVD:CVE-2015-3446