Alienvault Open Source Security Information Management vulnerabilities
22 known vulnerabilities affecting alienvault/open_source_security_information_management.
Total CVEs
22
CISA KEV
0
Public exploits
11
Exploited in wild
0
Severity breakdown
CRITICAL7HIGH10MEDIUM5
Vulnerabilities
Page 2 of 2
CVE-2015-4045P4MEDIUMCVSS 6.7≤ 5.02017-05-23
CVE-2015-4045 [MEDIUM] CWE-264 CVE-2015-4045: The sudoers file in the asset discovery scanner in AlienVault OSSIM before 5.0.1 allows local users
The sudoers file in the asset discovery scanner in AlienVault OSSIM before 5.0.1 allows local users to gain privileges via a crafted nmap script.
nvd
CVE-2013-5300P4MEDIUMCVSS 4.3≤ 4.2.3v1.0.4+18 more2013-08-15
CVE-2013-5300 [MEDIUM] CWE-79 CVE-2013-5300: Multiple cross-site scripting (XSS) vulnerabilities in AlienVault Open Source Security Information M
Multiple cross-site scripting (XSS) vulnerabilities in AlienVault Open Source Security Information Management (OSSIM) before 4.3.0 allow remote attackers to inject arbitrary web script or HTML via the withoutmenu parameter to (1) vulnmeter/index.php or (2) vulnmeter/sched.php; the (3) section parameter to av_inventory/task_edit.php; the (4) profile par
nvd
← Previous2 / 2