GCVE - cpe:2.3:a:alienvault:open_source_security_information

Approved changes feed: RSS · Atom

cpe:2.3:a:alienvault:open_source_security_information_management:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Alienvault (`d51cdd55-2f5a-537b-8b4f-3f5508c62127`)
Product	Open Source Security Information Management (`c424aed5-7bae-51d4-809e-50370ba8bb95`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from purl2cpe mapping

PURL mappings

PURL	Source	Last updated
`pkg:github/alienfault/ossim`	purl2cpe	2026-06-01 10:12:38.921706
`pkg:sourceforge/os-sim`	purl2cpe	2026-06-01 10:12:38.921709

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2018-7279`	vulnerable	2026-06-08 05:12:03.556057	Details available A remote code execution issue was discovered in AlienVault USM and OSSIM before 5.5.1. Published: 2018-03-14T13:00:00.000Z Updated: 2024-08-05T06:24:11.760Z Open on db.gcve.eu Reference links https://www.alienvault.com/forums/discussion/17155/alienvault-v5-5-1-hotfix-important-update https://www.alienvault.com/forums/discussion/17204/security-advisory-alienvault-v5-5-1-resolves-critical-vulnerability	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2015-4046`	vulnerable	2026-06-08 05:06:39.090419	Details available The asset discovery scanner in AlienVault OSSIM before 5.0.1 allows remote authenticated users to execute arbitrary commands via the assets array parameter to netscan/do_scan.php. Published: 2017-05-23T03:56:00.000Z Updated: 2024-08-06T06:04:02.686Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/74795 https://sysdream.com/uploads/media/default/0001/01/8c6a70098657b4474fe7abe9bcdd5e73b234b610.pdf https://www.alienvault.com/forums/discussion/5127/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2015-4045`	vulnerable	2026-06-08 05:06:39.090015	Details available The sudoers file in the asset discovery scanner in AlienVault OSSIM before 5.0.1 allows local users to gain privileges via a crafted nmap script. Published: 2017-05-23T03:56:00.000Z Updated: 2024-08-06T06:04:02.824Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/74791 https://sysdream.com/uploads/media/default/0001/01/8c6a70098657b4474fe7abe9bcdd5e73b234b610.pdf https://www.alienvault.com/forums/discussion/5127/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2014-5383`	vulnerable	2026-06-08 05:05:47.762888	Details available SQL injection vulnerability in AlienVault OSSIM before 4.7.0 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors. Published: 2014-08-21T14:00:00.000Z Updated: 2024-08-06T11:41:49.070Z Open on db.gcve.eu Reference links http://forums.alienvault.com/discussion/2690 http://www.securityfocus.com/bid/67312	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2014-5210`	vulnerable	2026-06-08 05:05:47.176955	Details available The av-centerd SOAP service in AlienVault OSSIM before 4.7.0 allows remote attackers to execute arbitrary commands via a crafted (1) remote_task or (2) get_license request, a different vulnerability than CVE-2014-3804 and CVE-2014-3805. Published: 2014-08-21T14:00:00.000Z Updated: 2024-08-06T11:41:47.687Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/69239 http://www.zerodayinitiative.com/advisories/ZDI-14-294/ http://forums.alienvault.com/discussion/2690 http://www.zerodayinitiative.com/advisories/ZDI-14-295/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2014-5159`	vulnerable	2026-06-08 05:05:47.054051	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2014-5158`	vulnerable	2026-06-08 05:05:47.041474	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2014-4153`	vulnerable	2026-06-08 05:05:44.294432	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2014-4152`	vulnerable	2026-06-08 05:05:44.293986	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2014-4151`	vulnerable	2026-06-08 05:05:44.292018	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2014-3805`	vulnerable	2026-06-08 05:05:42.831075	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2014-3804`	vulnerable	2026-06-08 05:05:42.821729	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2013-6056`	vulnerable	2026-06-08 05:04:55.289993	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2013-5967`	vulnerable	2026-06-08 05:04:54.919489	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2013-5300`	vulnerable	2026-06-08 05:04:51.119450	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2009-4374`	vulnerable	2026-06-08 04:51:48.275211	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.

Open Source Security Information Management

PURL mappings

Vulnerability references

Contribute