CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Alienvault: >> Unified Security Management >> 4.14 Security Vulnerabilities

CVE-2016-6913

Cross-site scripting (XSS) vulnerability in AlienVault OSSIM before 5.3 and USM before 5.3 allows remote attackers to inject arbitrary web script or HTML via the back parameter to ossim/conf/reload.php.

CVSS Score

5.4

EPSS Score

0.002

Published

2016-09-26

CVE-2015-3446

The Framework Daemon in AlienVault Unified Security Management before 4.15 allows remote attackers to execute arbitrary Python code via a crafted plugin configuration file (.cfg).

CVSS Score

9.3

EPSS Score

0.015

Published

2015-05-01

Page 2

Vulnerabilities

Vulnerable Software

Alienvault: >> Unified Security Management >> 4.14 Security Vulnerabilities

Products

Pricing

Contact Us