Arbitrary Code Execution Vulnerability in AlienVault Unified Security Management

Arbitrary Code Execution Vulnerability in AlienVault Unified Security Management

CVE-2015-3446 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

The Framework Daemon in AlienVault Unified Security Management before 4.15 allows remote attackers to execute arbitrary Python code via a crafted plugin configuration file (.cfg).

Learn more about our Web Application Penetration Testing UK.