Vulnerability Details CVE-2016-7955
The logcheck function in session.inc in AlienVault OSSIM before 5.3.1, when an action has been created, and USM before 5.3.1 allows remote attackers to bypass authentication and consequently obtain sensitive information, modify the application, or execute arbitrary code as root via an "AV Report Scheduler" HTTP User-Agent header.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.086
EPSS Ranking 92.1%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
References
- http://www.securityfocus.com/archive/1/540224/100/0/threaded
- http://www.zerodayinitiative.com/advisories/ZDI-16-517/
- https://www.alienvault.com/forums/discussion/7765/alienvault-v5-3-1-hotfix
- http://www.securityfocus.com/archive/1/540224/100/0/threaded
- http://www.zerodayinitiative.com/advisories/ZDI-16-517/
- https://www.alienvault.com/forums/discussion/7765/alienvault-v5-3-1-hotfix
Products affected by CVE-2016-7955
-
cpe:2.3:a:alienvault:ossim:*
-
cpe:2.3:a:alienvault:unified_security_management:4.14
-
cpe:2.3:a:alienvault:unified_security_management:5.2
-
cpe:2.3:a:alienvault:unified_security_management:5.3