Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
alienvault ossim vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2017-6972
AlienVault USM and OSSIM prior to 5.3.7 and NfSen prior to 1.3.8 have an error in privilege dropping and unnecessarily execute the NfSen Perl code as root, aka AlienVault ID ENG-104945, a different vulnerability than CVE-2017-6970 and CVE-2017-6971.
Alienvault Ossim
Alienvault Unified Security Management
Nfsen Nfsen
1 EDB exploit
10
CVSSv2
CVE-2014-5210
The av-centerd SOAP service in AlienVault OSSIM prior to 4.7.0 allows remote malicious users to execute arbitrary commands via a crafted (1) remote_task or (2) get_license request, a different vulnerability than CVE-2014-3804 and CVE-2014-3805.
Alienvault Open Source Security Information Management
Alienvault Open Source Security Information Management 4.5
Alienvault Open Source Security Information Management 4.3
Alienvault Open Source Security Information Management 4.2.2
Alienvault Open Source Security Information Management 4.0
Alienvault Open Source Security Information Management 3.1.12
Alienvault Open Source Security Information Management 2.1.2
Alienvault Open Source Security Information Management 1.0.6
Alienvault Open Source Security Information Management 4.1.3
Alienvault Open Source Security Information Management 4.1.2
Alienvault Open Source Security Information Management 4.1
Alienvault Open Source Security Information Management 4.0.4
Alienvault Open Source Security Information Management 4.0.3
Alienvault Open Source Security Information Management 1.0.4
Alienvault Open Source Security Information Management 4.4
Alienvault Open Source Security Information Management 4.3.3
Alienvault Open Source Security Information Management 4.3.2
Alienvault Open Source Security Information Management 4.3.1
Alienvault Open Source Security Information Management 3.1
Alienvault Open Source Security Information Management 2.1.5-3
Alienvault Open Source Security Information Management 2.1.5-2
Alienvault Open Source Security Information Management 2.1.5-1
1 EDB exploit
10
CVSSv2
CVE-2014-5158
The (1) av-centerd SOAP service and (2) backup command in the ossim-framework service in AlienVault OSSIM prior to 4.6.0 allows remote malicious users to execute arbitrary commands via unspecified vectors.
Alienvault Open Source Security Information Management
Alienvault Open Source Security Information Management 4.3
Alienvault Open Source Security Information Management 4.2.2
Alienvault Open Source Security Information Management 4.0
Alienvault Open Source Security Information Management 3.1.12
Alienvault Open Source Security Information Management 2.1.5-1
Alienvault Open Source Security Information Management 2.1.2
Alienvault Open Source Security Information Management 1.0.6
Alienvault Open Source Security Information Management 4.2.3
Alienvault Open Source Security Information Management 4.2
Alienvault Open Source Security Information Management 4.0.3
Alienvault Open Source Security Information Management 3.1.9
Alienvault Open Source Security Information Management 2.1.5
Alienvault Open Source Security Information Management 2.1
Alienvault Open Source Security Information Management 4.4
Alienvault Open Source Security Information Management 4.3.3
Alienvault Open Source Security Information Management 4.3.2
Alienvault Open Source Security Information Management 4.3.1
Alienvault Open Source Security Information Management 3.1.10
Alienvault Open Source Security Information Management 3.1
Alienvault Open Source Security Information Management 2.1.5-3
Alienvault Open Source Security Information Management 2.1.5-2
10
CVSSv2
CVE-2014-4151
The av-centerd SOAP service in AlienVault OSSIM prior to 4.8.0 allows remote malicious users to create arbitrary files and execute arbitrary code via a crafted set_file request.
Alienvault Open Source Security Information Management 4.6
Alienvault Open Source Security Information Management 4.5
Alienvault Open Source Security Information Management 4.4
Alienvault Open Source Security Information Management 4.3.3
Alienvault Open Source Security Information Management
Alienvault Open Source Security Information Management 4.6.1
Alienvault Open Source Security Information Management 4.0
10
CVSSv2
CVE-2014-4152
The av-centerd SOAP service in AlienVault OSSIM prior to 4.8.0 allows remote malicious users to execute arbitrary code via a crafted remote_task request, related to injecting an ssh public key.
Alienvault Open Source Security Information Management 4.6.1
Alienvault Open Source Security Information Management 4.0
Alienvault Open Source Security Information Management 4.6
Alienvault Open Source Security Information Management 4.5
Alienvault Open Source Security Information Management 4.4
Alienvault Open Source Security Information Management 4.3.3
Alienvault Open Source Security Information Management
10
CVSSv2
CVE-2014-3804
The av-centerd SOAP service in AlienVault OSSIM prior to 4.7.0 allows remote malicious users to execute arbitrary commands via a crafted (1) update_system_info_debian_package, (2) ossec_task, (3) set_ossim_setup admin_ip, (4) sync_rserver, or (5) set_ossim_setup framework_ip requ...
Alienvault Open Source Security Information Management 4.6
Alienvault Open Source Security Information Management 4.5
Alienvault Open Source Security Information Management 4.4
Alienvault Open Source Security Information Management 4.2
Alienvault Open Source Security Information Management 4.2.2
Alienvault Open Source Security Information Management 4.0.4
Alienvault Open Source Security Information Management 4.1
Alienvault Open Source Security Information Management 4.3.1
Alienvault Open Source Security Information Management 4.3.2
Alienvault Open Source Security Information Management 4.0
Alienvault Open Source Security Information Management
Alienvault Open Source Security Information Management 4.1.2
Alienvault Open Source Security Information Management 4.1.3
Alienvault Open Source Security Information Management 4.3.3
Alienvault Open Source Security Information Management 4.0.3
Alienvault Open Source Security Information Management 4.2.3
Alienvault Open Source Security Information Management 4.3
2 EDB exploits
10
CVSSv2
CVE-2014-3805
The av-centerd SOAP service in AlienVault OSSIM prior to 4.7.0 allows remote malicious users to execute arbitrary commands via a crafted (1) get_license, (2) get_log_line, or (3) update_system/upgrade_pro_web request, a different vulnerability than CVE-2014-3804.
Alienvault Open Source Security Information Management
Alienvault Open Source Security Information Management 4.6
Alienvault Open Source Security Information Management 4.1.2
Alienvault Open Source Security Information Management 4.1.3
Alienvault Open Source Security Information Management 4.2
Alienvault Open Source Security Information Management 4.3.3
Alienvault Open Source Security Information Management 4.0.3
Alienvault Open Source Security Information Management 4.3
Alienvault Open Source Security Information Management 4.3.1
Alienvault Open Source Security Information Management 4.0
Alienvault Open Source Security Information Management 4.0.4
Alienvault Open Source Security Information Management 4.1
Alienvault Open Source Security Information Management 4.3.2
Alienvault Open Source Security Information Management 4.5
Alienvault Open Source Security Information Management 4.4
Alienvault Open Source Security Information Management 4.2.2
Alienvault Open Source Security Information Management 4.2.3
2 EDB exploits
9
CVSSv2
CVE-2017-7175
NfSen prior to 1.3.8 allows remote malicious users to execute arbitrary OS commands via shell metacharacters in the customfmt parameter (aka the "Custom output format" field).
Nfsen Nfsen
1 EDB exploit
9
CVSSv2
CVE-2017-6971
AlienVault USM and OSSIM prior to 5.3.7 and NfSen prior to 1.3.8 allow remote authenticated users to execute arbitrary commands in a privileged context, or launch a reverse shell, via vectors involving the PHP session ID and the NfSen PHP code, aka AlienVault ID ENG-104862.
Alienvault Ossim
Alienvault Unified Security Management
Nfsen Nfsen
1 EDB exploit
1 Github repository
7.8
CVSSv2
CVE-2013-6056
OSSIM prior to 4.3.3.1 has tele_compress.php path traversal vulnerability
Alienvault Open Source Security Information Management
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »