22 matches found
CVE-2014-5210
CVE-2014-5210 affects the av-centerd SOAP service in AlienVault OSSIM prior to 4.7.0. The vulnerability arises from unsafe sanitization of remote_task (and get_license) SOAP requests in Util.pm, enabling remote attackers to execute arbitrary commands with root privileges. Exploitation details and...
CVE-2018-7279
CVE-2018-7279 affects AlienVault USM and OSSIM prior to version 5.5.1, describing a remote code execution vulnerability. The available documents identify the affected products and the vulnerability class but do not provide root cause details, exploit vectors, or a confirmed remediation. CNVD and ...
CVE-2014-3804
CVE-2014-3804 affects AlienVault OSSIM’s av-centerd SOAP service (before 4.7.0). It enables remote command execution via crafted av-centerd SOAP requests (e.g., sync_rserver, update_system_info_debian_package, ossec_task, set_ossim_setup admin_ip, set_ossim_setup framework_ip). Public references ...
CVE-2014-3805
CVE-2014-3805 affects AlienVault OSSIM (av-centerd SOAP service) prior to 4.7.0. The vulnerability is a command-injection flaw in the Util.pm get_license path (and related get_log_line/update_system/upgrade_pro_web flows) caused by unsanitized user input, allowing remote unauthenticated execution...
CVE-2014-4153
CVE-2014-4153 affects AlienVault OSSIM
CVE-2013-5967
CVE-2013-5967 affects AlienVault OSSIM (Open Source Security Information Management) 4.3 and earlier. The vulnerability is due to improper sanitization of the date_from parameter in multiple RadarReport scripts (e.g., radar-iso27001-potential.php and related radar-pci-potential.php) and in relate...
CVE-2009-4373
CVE-2009-4373 describes an unrestricted file upload in AlienVault OSSIM (OSSIM) versions including 2.1.5, with potential earlier releases. The flaw resides in repository/repository_attachment.php, allowing remote attackers to execute arbitrary code by uploading a file with an executable extension...
CVE-2009-4374
CVE-2009-4374 describes a directory traversal vulnerability in AlienVault Open Source Security Information Management (OSSIM) 2.1.5, and possibly earlier versions before 2.1.5-4. The flaw occurs in repository/repository_attachment.php, where an attacker can upload files into arbitrary directories...
CVE-2013-5321
CVE-2013-5321 involves multiple SQL injection vulnerabilities in AlienVault OSSIM 4.1, allowing remote attackers to inject arbitrary SQL via specific parameters: sensor in forensics/base_qry_main.php; tcp_flags[] or tcp_port[0][4] in forensics/base_stat_alerts.php; ip_addr[1][8] or port_type in f...
CVE-2014-4152
The issue affects AlienVault OSSIM’s av-centerd SOAP service. Before 4.8.0, handling of remote_task requests allows remote code execution via crafted input, related to injecting an SSH public key. The vulnerability can be exploited without authentication and could grant root privileges on vulnera...
CVE-2015-4046
CVE-2015-4046 affects the asset discovery scanner in AlienVault OSSIM prior to version 5.0.1 . The vulnerability resides in the assets[] parameter to netscan/do_scan.php , allowing remote authenticated users to execute arbitrary commands. This constitutes a remote code execution risk with network...
CVE-2013-6056
OSSIM prior to version 4.3.3.1 is affected by a directory traversal vulnerability in tele_compress.php (timestamp parameter) that could allow a remote attacker to download arbitrary files, subject to web server privileges. This CVE (CVE-2013-6056) is documented across multiple sources (NVD entry ...
CVE-2009-4372
CVE-2009-4372 affects AlienVault OSSIM 2.1.5 (and possibly earlier versions before 2.1.5-4). It allows remote attackers to execute arbitrary commands via shell metacharacters in the uniqueid parameter to sem/wcl.php, sem/storage_graphs.php, sem/storage_graphs2.php, sem/storage_graphs3.php, and se...
CVE-2012-3834
CVE-2012-3834 affects AlienVault Open Source SIEM (OSSIM) 3.1. The vulnerability is an SQL injection in forensics/base_qry_main.php that allows remote authenticated users to execute arbitrary SQL commands via the time[0][0] parameter. Documented impact is partial confidentiality/integrity/availab...
CVE-2012-3835
CVE-2012-3835 affects AlienVault Open Source Security Information Management (OSSIM) 3.1. The vulnerability consists of multiple cross-site scripting (XSS) flaws where an attacker can inject arbitrary web scripts or HTML via the url parameter of top.php or the time[0][0] parameter of forensics/ba...
CVE-2015-4045
The CVE-2015-4045 entry concerns AlienVault OSSIM (asset discovery scanner) with a vulnerable sudoers configuration that permits local privilege escalation via a crafted nmap script prior to 5.0.1. Affected component: sudoers handling in the asset discovery scanner; root cause: crafted nmap scrip...
CVE-2009-4375
The CVE-2009-4375 issue affects AlienVault OSSIM 2.1.5 (and possibly earlier builds before 2.1.5-4). A SQL injection vulnerability in repository/repository_attachment.php allows remote attackers to execute arbitrary SQL commands through the id_document parameter. References and vendor entries (Re...
CVE-2014-5383
CVE-2014-5383 concerns an SQL injection in AlienVault OSSIM. Connected data confirms the vulnerability affects AlienVault OSSIM 4.6.1 and earlier (pre-4.7.0), with an authenticated attacker able to execute arbitrary SQL via unspecified vectors. A Metasploit module documents exploitation against n...
CVE-2014-4151
CVE-2014-4151 affects AlienVault OSSIM prior to 4.8.0. The av-centerd SOAP service is vulnerable to a set_file handling flaw that allows a remote, unauthenticated attacker to write arbitrary files and execute arbitrary code with root privileges. The issue stems from inadequate input sanitization ...
CVE-2014-5158
CVE-2014-5158 affects AlienVault OSSIM (before 4.6.0). The vulnerability involves two components: (1) the av-centerd SOAP service and (2) the backup command in the ossim-framework service. A remote, unauthenticated attacker can execute arbitrary commands due to improper handling/sanitization of u...
CVE-2013-5300
CVE-2013-5300 affects AlienVault Open Source Security Information Management (OSSIM) prior to 4.3.0. The vulnerability is multiple cross-site scripting (XSS) flaws that allow remote attackers to inject arbitrary web script or HTML via the following parameters: withoutmenu (in vulnmeter/index.php ...
CVE-2014-5159
CVE-2014-5159 affects AlienVault OSSIM prior to 4.6.0 via the ossim-framework service. The vulnerability arises from improper handling of the ws_data parameter, allowing remote attackers to inject SQL commands (no authentication required per ZDI), potentially leading to SQL execution and, per adv...