Alienvault Ossim
4 CVEs affecting Alienvault Ossim. Latest disclosed: 2017-03-22. Critical: 2, High: 2.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2017-6972 | Critical | 9.8 | 2017-03-22 | AlienVault USM and OSSIM before 5.3.7 and NfSen before 1.3.8 have an error in privilege dropping and unnecessarily execute the NfSen Perl code as root, aka Ali… |
CVE-2016-7955 | Critical | 9.8 | 2017-03-15 | The logcheck function in session.inc in AlienVault OSSIM before 5.3.1, when an action has been created, and USM before 5.3.1 allows remote attackers to bypass… |
CVE-2017-6971 | High | 8.8 | 2017-03-22 | AlienVault USM and OSSIM before 5.3.7 and NfSen before 1.3.8 allow remote authenticated users to execute arbitrary commands in a privileged context, or launch… |
CVE-2017-6970 | High | 8.4 | 2017-03-22 | AlienVault USM and OSSIM before 5.3.7 and NfSen before 1.3.8 allow local users to execute arbitrary commands in a privileged context via an NfSen socket, aka A… |