Every CVE whose affected-product data names Alienvault Ossim, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (7)
CVE-2016-7955 — CVSS 9.8 (critical): The logcheck function in session.inc in AlienVault OSSIM before 5.3.1, when an action has been created, and USM before 5.3.1 allows remote…
CVE-2017-6972 — CVSS 9.8 (critical): AlienVault USM and OSSIM before 5.3.7 and NfSen before 1.3.8 have an error in privilege dropping and unnecessarily execute the NfSen Perl…
CVE-2017-6971 — CVSS 8.8 (high): AlienVault USM and OSSIM before 5.3.7 and NfSen before 1.3.8 allow remote authenticated users to execute arbitrary commands in a privileged…
CVE-2017-6970 — CVSS 8.4 (high): AlienVault USM and OSSIM before 5.3.7 and NfSen before 1.3.8 allow local users to execute arbitrary commands in a privileged context via an…
CVE-2009-3439 — CVSS 6.5 (medium): Multiple SQL injection vulnerabilities in Open Source Security Information Management (OSSIM) before 2.1.2 allow remote authenticated users…
CVE-2009-3441 — CVSS 5.0 (medium): Open Source Security Information Management (OSSIM) before 2.1.2 allows remote attackers to bypass authentication, and read graphs or…
CVE-2009-3440 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in Open Source Security Information Management (OSSIM) before 2.1.2 allows remote attackers to…