Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
alienvault ossim vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2009-4373
Unrestricted file upload vulnerability in repository/repository_attachment.php in AlienVault Open Source Security Information Management (OSSIM) 2.1.5, and possibly other versions prior to 2.1.5-4, allows remote malicious users to execute arbitrary code by uploading a file with a...
Alienvault Open Source Security Information Management 2.1.5-1
Alienvault Open Source Security Information Management 2.1.5-2
Alienvault Open Source Security Information Management 2.1.5
Alienvault Open Source Security Information Management 2.1.5-3
7.8
CVSSv2
CVE-2013-6056
OSSIM prior to 4.3.3.1 has tele_compress.php path traversal vulnerability
Alienvault Open Source Security Information Management
7.2
CVSSv2
CVE-2015-4045
The sudoers file in the asset discovery scanner in AlienVault OSSIM prior to 5.0.1 allows local users to gain privileges via a crafted nmap script.
Alienvault Open Source Security Information Management
6.5
CVSSv2
CVE-2015-4046
The asset discovery scanner in AlienVault OSSIM prior to 5.0.1 allows remote authenticated users to execute arbitrary commands via the assets array parameter to netscan/do_scan.php.
Alienvault Open Source Security Information Management
3.5
CVSSv2
CVE-2017-14956
AlienVault USM v5.4.2 and previous versions offers authenticated users the functionality of exporting generated reports via the "/ossim/report/wizard_email.php" script. Besides offering an export via a local download, the script also offers the possibility to send out a...
Alienvault Unified Security Management
1 EDB exploit
7.5
CVSSv2
CVE-2009-4374
Directory traversal vulnerability in repository/repository_attachment.php in AlienVault Open Source Security Information Management (OSSIM) 2.1.5, and possibly other versions prior to 2.1.5-4, allows remote malicious users to upload files into arbitrary directories via a .. (dot ...
Alienvault Open Source Security Information Management
9
CVSSv2
CVE-2017-7175
NfSen prior to 1.3.8 allows remote malicious users to execute arbitrary OS commands via shell metacharacters in the customfmt parameter (aka the "Custom output format" field).
Nfsen Nfsen
1 EDB exploit
NA
CVE-2016-69132
AlienVault USM/OSSIM version 5.2 suffers from a cross site scripting vulnerability.
NA
CVE-2016-69132016
AlienVault USM/OSSIM version 5.2 suffers from a cross site scripting vulnerability.
NA
CVE-2012-2599
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2012-3835. Reason: This issue was MERGED into CVE-2012-3835 in accordance with CVE content decisions, because it is the same type of vulnerability and affects the same versions. Notes: All CVE users should referen...
2 EDB exploits
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »