CVE-2016-8581

high-risk

Published 2016-10-28

A persistent XSS vulnerability exists in the User-Agent header of the login process of AlienVault OSSIM and USM before 5.3.2 that allows an attacker to steal session IDs of logged in users when the current sessions are viewed by an administrator.

Do I need to act?

68.2% chance of exploitation in next 30 days

EPSS score — higher than 32% of all CVEs

Not on CISA KEV list

No confirmed active exploitation reported to CISA

1 public exploit available

40683

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 6.1/10 Medium

NETWORK / LOW complexity

Affected Products (2)

Open Source Security Information And Event Management

Unified Security Management

Affected Vendors

Alienvault

References (6)

http://www.securityfocus.com/bid/93862

Vendor Advisory https://www.alienvault.com/forums/discussion/7766/security-advisory-alienvault-5...

https://www.exploit-db.com/exploits/40683/

http://www.securityfocus.com/bid/93862

Vendor Advisory https://www.alienvault.com/forums/discussion/7766/security-advisory-alienvault-5...

https://www.exploit-db.com/exploits/40683/

/ 100

high-risk

Severity 23/34 · High

Exploitability 26/34 · High

Exposure 7/34 · Low