Lucene search
K
AlienvaultOpen Source Security Information Management

22 matches found

CVE
CVE
added 2014/08/21 2:0 p.m.78 views

CVE-2014-5210

CVE-2014-5210 affects the av-centerd SOAP service in AlienVault OSSIM prior to 4.7.0. The vulnerability arises from unsafe sanitization of remote_task (and get_license) SOAP requests in Util.pm, enabling remote attackers to execute arbitrary commands with root privileges. Exploitation details and...

10CVSS7.3AI score0.14917EPSS
Web
CVE
CVE
added 2018/03/14 1:0 p.m.69 views

CVE-2018-7279

CVE-2018-7279 affects AlienVault USM and OSSIM prior to version 5.5.1, describing a remote code execution vulnerability. The available documents identify the affected products and the vulnerability class but do not provide root cause details, exploit vectors, or a confirmed remediation. CNVD and ...

9.8CVSS9.7AI score0.02488EPSS
CVE
CVE
added 2014/06/13 2:0 p.m.57 views

CVE-2014-3804

CVE-2014-3804 affects AlienVault OSSIM’s av-centerd SOAP service (before 4.7.0). It enables remote command execution via crafted av-centerd SOAP requests (e.g., sync_rserver, update_system_info_debian_package, ossec_task, set_ossim_setup admin_ip, set_ossim_setup framework_ip). Public references ...

10CVSS7.3AI score0.72376EPSS
Web
CVE
CVE
added 2014/06/13 2:0 p.m.57 views

CVE-2014-3805

CVE-2014-3805 affects AlienVault OSSIM (av-centerd SOAP service) prior to 4.7.0. The vulnerability is a command-injection flaw in the Util.pm get_license path (and related get_log_line/update_system/upgrade_pro_web flows) caused by unsanitized user input, allowing remote unauthenticated execution...

10CVSS7.3AI score0.13072EPSS
Web
CVE
CVE
added 2014/06/18 7:0 p.m.55 views

CVE-2014-4153

CVE-2014-4153 affects AlienVault OSSIM

7.8CVSS6.8AI score0.07385EPSS
Web
CVE
CVE
added 2013/10/09 2:44 p.m.53 views

CVE-2013-5967

CVE-2013-5967 affects AlienVault OSSIM (Open Source Security Information Management) 4.3 and earlier. The vulnerability is due to improper sanitization of the date_from parameter in multiple RadarReport scripts (e.g., radar-iso27001-potential.php and related radar-pci-potential.php) and in relate...

7.5CVSS8.8AI score0.19022EPSS
Web
CVE
CVE
added 2009/12/21 4:0 p.m.52 views

CVE-2009-4373

CVE-2009-4373 describes an unrestricted file upload in AlienVault OSSIM (OSSIM) versions including 2.1.5, with potential earlier releases. The flaw resides in repository/repository_attachment.php, allowing remote attackers to execute arbitrary code by uploading a file with an executable extension...

7.5CVSS7.8AI score0.02984EPSS
CVE
CVE
added 2009/12/21 4:0 p.m.51 views

CVE-2009-4374

CVE-2009-4374 describes a directory traversal vulnerability in AlienVault Open Source Security Information Management (OSSIM) 2.1.5, and possibly earlier versions before 2.1.5-4. The flaw occurs in repository/repository_attachment.php, where an attacker can upload files into arbitrary directories...

7.5CVSS6.9AI score0.01641EPSS
Web
CVE
CVE
added 2013/08/20 2:0 p.m.50 views

CVE-2013-5321

CVE-2013-5321 involves multiple SQL injection vulnerabilities in AlienVault OSSIM 4.1, allowing remote attackers to inject arbitrary SQL via specific parameters: sensor in forensics/base_qry_main.php; tcp_flags[] or tcp_port[0][4] in forensics/base_stat_alerts.php; ip_addr[1][8] or port_type in f...

7.5CVSS8.7AI score0.01403EPSS
Web
CVE
CVE
added 2014/06/18 7:0 p.m.50 views

CVE-2014-4152

The issue affects AlienVault OSSIM’s av-centerd SOAP service. Before 4.8.0, handling of remote_task requests allows remote code execution via crafted input, related to injecting an SSH public key. The vulnerability can be exploited without authentication and could grant root privileges on vulnera...

10CVSS7.8AI score0.05785EPSS
CVE
CVE
added 2017/05/23 3:56 a.m.50 views

CVE-2015-4046

CVE-2015-4046 affects the asset discovery scanner in AlienVault OSSIM prior to version 5.0.1 . The vulnerability resides in the assets[] parameter to netscan/do_scan.php , allowing remote authenticated users to execute arbitrary commands. This constitutes a remote code execution risk with network...

7.2CVSS7.1AI score0.02713EPSS
Web
CVE
CVE
added 2020/01/27 2:1 p.m.48 views

CVE-2013-6056

OSSIM prior to version 4.3.3.1 is affected by a directory traversal vulnerability in tele_compress.php (timestamp parameter) that could allow a remote attacker to download arbitrary files, subject to web server privileges. This CVE (CVE-2013-6056) is documented across multiple sources (NVD entry ...

7.8CVSS7.5AI score0.01714EPSS
CVE
CVE
added 2009/12/21 4:0 p.m.46 views

CVE-2009-4372

CVE-2009-4372 affects AlienVault OSSIM 2.1.5 (and possibly earlier versions before 2.1.5-4). It allows remote attackers to execute arbitrary commands via shell metacharacters in the uniqueid parameter to sem/wcl.php, sem/storage_graphs.php, sem/storage_graphs2.php, sem/storage_graphs3.php, and se...

7.5CVSS7.7AI score0.04819EPSS
Web
CVE
CVE
added 2012/07/03 10:0 p.m.45 views

CVE-2012-3834

CVE-2012-3834 affects AlienVault Open Source SIEM (OSSIM) 3.1. The vulnerability is an SQL injection in forensics/base_qry_main.php that allows remote authenticated users to execute arbitrary SQL commands via the time[0][0] parameter. Documented impact is partial confidentiality/integrity/availab...

6.5CVSS8.2AI score0.0144EPSS
Web
CVE
CVE
added 2012/07/03 10:0 p.m.44 views

CVE-2012-3835

CVE-2012-3835 affects AlienVault Open Source Security Information Management (OSSIM) 3.1. The vulnerability consists of multiple cross-site scripting (XSS) flaws where an attacker can inject arbitrary web scripts or HTML via the url parameter of top.php or the time[0][0] parameter of forensics/ba...

4.3CVSS5.8AI score0.02226EPSS
Web
CVE
CVE
added 2017/05/23 3:56 a.m.44 views

CVE-2015-4045

The CVE-2015-4045 entry concerns AlienVault OSSIM (asset discovery scanner) with a vulnerable sudoers configuration that permits local privilege escalation via a crafted nmap script prior to 5.0.1. Affected component: sudoers handling in the asset discovery scanner; root cause: crafted nmap scrip...

7.2CVSS6.5AI score0.00507EPSS
CVE
CVE
added 2009/12/21 4:0 p.m.42 views

CVE-2009-4375

The CVE-2009-4375 issue affects AlienVault OSSIM 2.1.5 (and possibly earlier builds before 2.1.5-4). A SQL injection vulnerability in repository/repository_attachment.php allows remote attackers to execute arbitrary SQL commands through the id_document parameter. References and vendor entries (Re...

7.5CVSS8.4AI score0.00971EPSS
Web
CVE
CVE
added 2014/08/21 2:0 p.m.42 views

CVE-2014-5383

CVE-2014-5383 concerns an SQL injection in AlienVault OSSIM. Connected data confirms the vulnerability affects AlienVault OSSIM 4.6.1 and earlier (pre-4.7.0), with an authenticated attacker able to execute arbitrary SQL via unspecified vectors. A Metasploit module documents exploitation against n...

6.5CVSS8.2AI score0.21193EPSS
CVE
CVE
added 2013/08/15 8:0 p.m.41 views

CVE-2013-5300

CVE-2013-5300 affects AlienVault Open Source Security Information Management (OSSIM) prior to 4.3.0. The vulnerability is multiple cross-site scripting (XSS) flaws that allow remote attackers to inject arbitrary web script or HTML via the following parameters: withoutmenu (in vulnmeter/index.php ...

4.3CVSS5.9AI score0.01794EPSS
Web
CVE
CVE
added 2014/06/18 7:0 p.m.41 views

CVE-2014-4151

CVE-2014-4151 affects AlienVault OSSIM prior to 4.8.0. The av-centerd SOAP service is vulnerable to a set_file handling flaw that allows a remote, unauthenticated attacker to write arbitrary files and execute arbitrary code with root privileges. The issue stems from inadequate input sanitization ...

10CVSS7.7AI score0.07321EPSS
CVE
CVE
added 2014/08/21 2:0 p.m.41 views

CVE-2014-5158

CVE-2014-5158 affects AlienVault OSSIM (before 4.6.0). The vulnerability involves two components: (1) the av-centerd SOAP service and (2) the backup command in the ossim-framework service. A remote, unauthenticated attacker can execute arbitrary commands due to improper handling/sanitization of u...

10CVSS7.9AI score0.0368EPSS
CVE
CVE
added 2014/08/21 2:0 p.m.34 views

CVE-2014-5159

CVE-2014-5159 affects AlienVault OSSIM prior to 4.6.0 via the ossim-framework service. The vulnerability arises from improper handling of the ws_data parameter, allowing remote attackers to inject SQL commands (no authentication required per ZDI), potentially leading to SQL execution and, per adv...

7.5CVSS8.7AI score0.01264EPSS