Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
alienvault ossim vulnerabilities and exploits
(subscribe to this query)
NA
CVE_2022_40684
Official Writeup - Simple CTF 2.0 Created: April 23, 2024 7:50 PM Today I completed an other room on TryHackMe with a simple file-upload vulnerability which I built. I have tried for dancing around this whole CTF machine and getting a lot of walls of challenges in the end it co...
1 Github repository
5
CVSSv2
CVE-2020-22650
A memory leak vulnerability in sim-organizer.c of AlienVault Ossim v5 causes a denial of service (DOS) via a system crash triggered by the occurrence of a large number of alarm events.
Att Alienvault Ossim 5.0
NA
CVE-2012-2599
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2012-3835. Reason: This issue was MERGED into CVE-2012-3835 in accordance with CVE content decisions, because it is the same type of vulnerability and affects the same versions. Notes: All CVE users should referen...
2 EDB exploits
7.8
CVSSv2
CVE-2013-6056
OSSIM prior to 4.3.3.1 has tele_compress.php path traversal vulnerability
Alienvault Open Source Security Information Management
7.5
CVSSv2
CVE-2018-7279
A remote code execution issue exists in AlienVault USM and OSSIM prior to 5.5.1.
Alienvault Unified Security Management
Alienvault Open Source Security Information Management
3.5
CVSSv2
CVE-2017-14956
AlienVault USM v5.4.2 and previous versions offers authenticated users the functionality of exporting generated reports via the "/ossim/report/wizard_email.php" script. Besides offering an export via a local download, the script also offers the possibility to send out a...
Alienvault Unified Security Management
1 EDB exploit
9
CVSSv2
CVE-2017-7175
NfSen prior to 1.3.8 allows remote malicious users to execute arbitrary OS commands via shell metacharacters in the customfmt parameter (aka the "Custom output format" field).
Nfsen Nfsen
1 EDB exploit
NA
CVE-2017-69711
NfSen version 1.3.7 and AlienVault USM/OSSIM version 5.3.4 suffer from a remote command injection vulnerability.
7.2
CVSSv2
CVE-2015-4045
The sudoers file in the asset discovery scanner in AlienVault OSSIM prior to 5.0.1 allows local users to gain privileges via a crafted nmap script.
Alienvault Open Source Security Information Management
6.5
CVSSv2
CVE-2015-4046
The asset discovery scanner in AlienVault OSSIM prior to 5.0.1 allows remote authenticated users to execute arbitrary commands via the assets array parameter to netscan/do_scan.php.
Alienvault Open Source Security Information Management
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »