CRITICALβœ“ PATCHπŸ‡΅πŸ‡± Wersja polska

CVE-2016-7955

CVSS 9.8v3.0pub. 2017-03-15upd. 2026-05-13

The logcheck function in session.inc in AlienVault OSSIM before 5.3.1, when an action has been created, and USM before 5.3.1 allows remote attackers to bypass authentication and consequently obtain sensitive information, modify the application, or execute arbitrary code as root via an "AV Report Scheduler" HTTP User-Agent header.

CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Alienvault Ossim

    APP
    Alienvault
    ≀ 5.3
  • Alienvault Unified Security Management

    APP
    Alienvault
    ≀ 5.3
🟒
PATCH AVAILABLE
Vendor update available. Deploy in standard maintenance cycle.
Tags
RCEAuth Bypass
CWE
References

Related vulnerabilities

CVE-2018-7279CRITICAL9.8ten sam produkt

A remote code execution issue was discovered in AlienVault USM and OSSIM before 5.5.1.

CVE-2017-6972CRITICAL9.8ten sam produkt

AlienVault USM and OSSIM before 5.3.7 and NfSen before 1.3.8 have an error in privilege dropping and unnecessa...

CVE-2016-8582CRITICAL9.8ten sam produkt

A vulnerability exists in gauge.php of AlienVault OSSIM and USM before 5.3.2 that allows an attacker to execut...

CVE-2016-8580CRITICAL9.8ten sam produkt

PHP object injection vulnerabilities exist in multiple widget files in AlienVault OSSIM and USM before 5.3.2. ...

CVE-2017-6970HIGH8.4ten sam produkt

AlienVault USM and OSSIM before 5.3.7 and NfSen before 1.3.8 allow local users to execute arbitrary commands i...

CVE-2016-7955 β€” Alienvault β€” Ossim β€” CRITICAL β€” CVSS 9.8 | CVEbaza.pl