alienvault security advisories
3 threat alerts tracking vulnerabilities and security advisories that affect alienvault products.
Vulnios monitors alienvault CVE feeds, vendor advisories, CISA KEV listings, and exploit-prediction data continuously. Each alert below is enriched with severity, exploitation status, affected products, and a remediation path. Use this page to scan recent alienvault security news in one place, or click into an individual alert for full detail.
Critical Vulnerability: CVE-2016-8580 — alienvault — open_source_security_information_and_event_management, unified_security_management
PHP object injection vulnerabilities exist in multiple widget files in AlienVault OSSIM and USM before 5.3.2. These vulnerabilities allow arbitrary PHP code execution via magic methods in included cla
criticalCVE-2016-8580Critical Vulnerability: CVE-2016-8582 — alienvault — open_source_security_information_and_event_management, unified_security_management
A vulnerability exists in gauge.php of AlienVault OSSIM and USM before 5.3.2 that allows an attacker to execute an arbitrary SQL query and retrieve database information or read local system files via
criticalCVE-2016-8582Critical Vulnerability: CVE-2016-7955 — alienvault — ossim, unified_security_management
The logcheck function in session.inc in AlienVault OSSIM before 5.3.1, when an action has been created, and USM before 5.3.1 allows remote attackers to bypass authentication and consequently obtain se
criticalCVE-2016-7955
Track alienvault exposure across your environment
Vulnios automatically cross-references your asset inventory against new alienvault CVEs and surfaces only what affects you. No more sifting manually — actionable findings only.
Start a free scan