Vulnerability Details CVE-2016-7955
The logcheck function in session.inc in AlienVault OSSIM before 5.3.1, when an action has been created, and USM before 5.3.1 allows remote attackers to bypass authentication and consequently obtain sensitive information, modify the application, or execute arbitrary code as root via an "AV Report Scheduler" HTTP User-Agent header.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.112
EPSS Ranking 93.2%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
References
- http://www.securityfocus.com/archive/1/540224/100/0/threaded
- http://www.zerodayinitiative.com/advisories/ZDI-16-517/
- https://www.alienvault.com/forums/discussion/7765/alienvault-v5-3-1-hotfix
- http://www.securityfocus.com/archive/1/540224/100/0/threaded
- http://www.zerodayinitiative.com/advisories/ZDI-16-517/
- https://www.alienvault.com/forums/discussion/7765/alienvault-v5-3-1-hotfix
Products affected by CVE-2016-7955
-
cpe:2.3:a:alienvault:ossim:*
-
cpe:2.3:a:alienvault:unified_security_management:4.14
-
cpe:2.3:a:alienvault:unified_security_management:5.2
-
cpe:2.3:a:alienvault:unified_security_management:5.3