Alienvault Open Source Security Information Management vulnerabilities
22 known vulnerabilities affecting alienvault/open_source_security_information_management.
Total CVEs
22
CISA KEV
0
Public exploits
11
Exploited in wild
0
Severity breakdown
CRITICAL7HIGH10MEDIUM5
Vulnerabilities
Page 1 of 2
CVE-2014-3804P2CRITICALCVSS 10.0PoC≤ 4.6.1v4.0+15 more2014-06-13
CVE-2014-3804 [CRITICAL] CWE-94 CVE-2014-3804: The av-centerd SOAP service in AlienVault OSSIM before 4.7.0 allows remote attackers to execute arbi
The av-centerd SOAP service in AlienVault OSSIM before 4.7.0 allows remote attackers to execute arbitrary commands via a crafted (1) update_system_info_debian_package, (2) ossec_task, (3) set_ossim_setup admin_ip, (4) sync_rserver, or (5) set_ossim_setup framework_ip request, a different vulnerability than CVE-2014-3805.
nvd
CVE-2014-5210P2CRITICALCVSS 10.0PoC≤ 4.6.1v1.0.4+27 more2014-08-21
CVE-2014-5210 [CRITICAL] CVE-2014-5210: The av-centerd SOAP service in AlienVault OSSIM before 4.7.0 allows remote attackers to execute arbi
The av-centerd SOAP service in AlienVault OSSIM before 4.7.0 allows remote attackers to execute arbitrary commands via a crafted (1) remote_task or (2) get_license request, a different vulnerability than CVE-2014-3804 and CVE-2014-3805.
nvd
CVE-2014-3805P2CRITICALCVSS 10.0PoC≤ 4.6.1v4.0+15 more2014-06-13
CVE-2014-3805 [CRITICAL] CVE-2014-3805: The av-centerd SOAP service in AlienVault OSSIM before 4.7.0 allows remote attackers to execute arbi
The av-centerd SOAP service in AlienVault OSSIM before 4.7.0 allows remote attackers to execute arbitrary commands via a crafted (1) get_license, (2) get_log_line, or (3) update_system/upgrade_pro_web request, a different vulnerability than CVE-2014-3804.
nvd
CVE-2013-5967P2HIGHCVSS 7.5PoC≤ 4.3v1.0.4+19 more2013-10-09
CVE-2013-5967 [HIGH] CWE-89 CVE-2013-5967: Multiple SQL injection vulnerabilities in AlienVault Open Source Security Information Management (OS
Multiple SQL injection vulnerabilities in AlienVault Open Source Security Information Management (OSSIM) 4.3 and earlier allow remote attackers to execute arbitrary SQL commands via the date_from parameter to (1) radar-iso27001-potential.php, (2) radar-iso27001-A12IS_acquisition-pot.php, (3) radar-iso27001-A11AccessControl-pot.php, (4) radar-iso27001-A10
nvd
CVE-2014-5383P3MEDIUMCVSS 6.5PoC≤ 4.6.1v1.0.4+27 more2014-08-21
CVE-2014-5383 [MEDIUM] CWE-89 CVE-2014-5383: SQL injection vulnerability in AlienVault OSSIM before 4.7.0 allows remote authenticated users to ex
SQL injection vulnerability in AlienVault OSSIM before 4.7.0 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.
nvd
CVE-2014-4153P3HIGHCVSS 7.8PoC≤ 4.7.0v4.0+5 more2014-06-18
CVE-2014-4153 [HIGH] CWE-200 CVE-2014-4153: The av-centerd SOAP service in AlienVault OSSIM before 4.8.0 allows remote attackers to read arbitra
The av-centerd SOAP service in AlienVault OSSIM before 4.8.0 allows remote attackers to read arbitrary files via a crafted get_file request.
nvd
CVE-2009-4372P3HIGHCVSS 7.5PoCv2.1.5v2.1.5-1+2 more2009-12-21
CVE-2009-4372 [HIGH] CWE-20 CVE-2009-4372: AlienVault Open Source Security Information Management (OSSIM) 2.1.5, and possibly other versions be
AlienVault Open Source Security Information Management (OSSIM) 2.1.5, and possibly other versions before 2.1.5-4, allows remote attackers to execute arbitrary commands via shell metacharacters in the uniqueid parameter to (1) wcl.php, (2) storage_graphs.php, (3) storage_graphs2.php, (4) storage_graphs3.php, and (5) storage_graphs4.php in sem/.
nvd
CVE-2013-5321P3HIGHCVSS 7.5PoCv4.12013-08-20
CVE-2013-5321 [HIGH] CWE-89 CVE-2013-5321: Multiple SQL injection vulnerabilities in AlienVault Open Source Security Information Management (OS
Multiple SQL injection vulnerabilities in AlienVault Open Source Security Information Management (OSSIM) 4.1 allow remote attackers to execute arbitrary SQL commands via the (1) sensor parameter in a Query action to forensics/base_qry_main.php; the (2) tcp_flags[] or (3) tcp_port[0][4] parameter to forensics/base_stat_alerts.php; the (4) ip_addr[1][8] or
nvd
CVE-2009-4375P3HIGHCVSS 7.5PoCv2.1.5v2.1.5-1+2 more2009-12-21
CVE-2009-4375 [HIGH] CWE-89 CVE-2009-4375: SQL injection vulnerability in repository/repository_attachment.php in AlienVault Open Source Securi
SQL injection vulnerability in repository/repository_attachment.php in AlienVault Open Source Security Information Management (OSSIM) 2.1.5, and possibly other versions before 2.1.5-4, allows remote attackers to execute arbitrary SQL commands via the id_document parameter.
nvd
CVE-2014-4151P3CRITICALCVSS 10.0≤ 4.7.0v4.0+5 more2014-06-18
CVE-2014-4151 [CRITICAL] CWE-94 CVE-2014-4151: The av-centerd SOAP service in AlienVault OSSIM before 4.8.0 allows remote attackers to create arbit
The av-centerd SOAP service in AlienVault OSSIM before 4.8.0 allows remote attackers to create arbitrary files and execute arbitrary code via a crafted set_file request.
nvd
CVE-2014-4152P3CRITICALCVSS 10.0≤ 4.7.0v4.0+5 more2014-06-18
CVE-2014-4152 [CRITICAL] CWE-94 CVE-2014-4152: The av-centerd SOAP service in AlienVault OSSIM before 4.8.0 allows remote attackers to execute arbi
The av-centerd SOAP service in AlienVault OSSIM before 4.8.0 allows remote attackers to execute arbitrary code via a crafted remote_task request, related to injecting an ssh public key.
nvd
CVE-2014-5158P3CRITICALCVSS 10.0≤ 4.5v1.0.4+25 more2014-08-21
CVE-2014-5158 [CRITICAL] CWE-94 CVE-2014-5158: The (1) av-centerd SOAP service and (2) backup command in the ossim-framework service in AlienVault
The (1) av-centerd SOAP service and (2) backup command in the ossim-framework service in AlienVault OSSIM before 4.6.0 allows remote attackers to execute arbitrary commands via unspecified vectors.
nvd
CVE-2012-3834P3MEDIUMCVSS 6.5PoCv3.12012-07-03
CVE-2012-3834 [MEDIUM] CWE-89 CVE-2012-3834: SQL injection vulnerability in forensics/base_qry_main.php in AlienVault Open Source Security Inform
SQL injection vulnerability in forensics/base_qry_main.php in AlienVault Open Source Security Information Management (OSSIM) 3.1 allows remote authenticated users to execute arbitrary SQL commands via the time[0][0] parameter.
nvd
CVE-2018-7279P3CRITICALCVSS 9.8fixed in 5.5.12018-03-14
CVE-2018-7279 [CRITICAL] CVE-2018-7279: A remote code execution issue was discovered in AlienVault USM and OSSIM before 5.5.1.
A remote code execution issue was discovered in AlienVault USM and OSSIM before 5.5.1.
nvd
CVE-2015-4046P3HIGHCVSS 7.2≤ 5.02017-05-23
CVE-2015-4046 [HIGH] CWE-77 CVE-2015-4046: The asset discovery scanner in AlienVault OSSIM before 5.0.1 allows remote authenticated users to ex
The asset discovery scanner in AlienVault OSSIM before 5.0.1 allows remote authenticated users to execute arbitrary commands via the assets array parameter to netscan/do_scan.php.
nvd
CVE-2009-4373P3HIGHCVSS 7.5v2.1.5v2.1.5-1+2 more2009-12-21
CVE-2009-4373 [HIGH] CVE-2009-4373: Unrestricted file upload vulnerability in repository/repository_attachment.php in AlienVault Open So
Unrestricted file upload vulnerability in repository/repository_attachment.php in AlienVault Open Source Security Information Management (OSSIM) 2.1.5, and possibly other versions before 2.1.5-4, allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in ossiminstall/
nvd
CVE-2014-5159P3HIGHCVSS 7.5≤ 4.5v1.0.4+25 more2014-08-21
CVE-2014-5159 [HIGH] CWE-89 CVE-2014-5159: SQL injection vulnerability in the ossim-framework service in AlienVault OSSIM before 4.6.0 allows r
SQL injection vulnerability in the ossim-framework service in AlienVault OSSIM before 4.6.0 allows remote attackers to execute arbitrary SQL commands via the ws_data parameter.
nvd
CVE-2013-6056P3HIGHCVSS 7.5fixed in 4.3.3.12020-01-27
CVE-2013-6056 [HIGH] CWE-22 CVE-2013-6056: OSSIM before 4.3.3.1 has tele_compress.php path traversal vulnerability
OSSIM before 4.3.3.1 has tele_compress.php path traversal vulnerability
nvd
CVE-2012-3835P4MEDIUMCVSS 4.3PoCv3.12012-07-03
CVE-2012-3835 [MEDIUM] CWE-79 CVE-2012-3835: Multiple cross-site scripting (XSS) vulnerabilities in AlienVault Open Source Security Information M
Multiple cross-site scripting (XSS) vulnerabilities in AlienVault Open Source Security Information Management (OSSIM) 3.1 allow remote attackers to inject arbitrary web script or HTML via the (1) url parameter to top.php or (2) time[0][0] parameter to forensics/base_qry_main.php, which is not properly handled in an error page.
nvd
CVE-2009-4374P3HIGHCVSS 7.5≤ 2.1.52009-12-21
CVE-2009-4374 [HIGH] CWE-22 CVE-2009-4374: Directory traversal vulnerability in repository/repository_attachment.php in AlienVault Open Source
Directory traversal vulnerability in repository/repository_attachment.php in AlienVault Open Source Security Information Management (OSSIM) 2.1.5, and possibly other versions before 2.1.5-4, allows remote attackers to upload files into arbitrary directories via a .. (dot dot) in the id_document parameter.
nvd
1 / 2Next →