High severity7.2NVD Advisory· Published May 23, 2017· Updated May 13, 2026

CVE-2015-4046

Description

The asset discovery scanner in AlienVault OSSIM before 5.0.1 allows remote authenticated users to execute arbitrary commands via the assets array parameter to netscan/do_scan.php.

Affected products

Alienvault/Open Source Security Information Management
cpe:2.3:a:alienvault:open_source_security_information_management:*:*:*:*:*:*:*:*
Range: <=5.0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.alienvault.com/forums/discussion/5127/nvdPatchVendor Advisory
sysdream.com/uploads/media/default/0001/01/8c6a70098657b4474fe7abe9bcdd5e73b234b610.pdfnvdExploitThird Party Advisory
www.securityfocus.com/bid/74795nvdThird Party AdvisoryVDB Entry

News mentions

No linked articles in our index yet.

cvss	0.468
epss	0.005
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000