AlienVault.OSSIM.Conf.Reload.XSS
Description
This indicates an attack attempt against a Cross-Site Scripting vulnerability in AlienVault OSSIM.
The vulnerability is due to insufficient validation of user supplied data in the application. A remote attacker can exploit this by tricking an unsuspecting user into visiting a malicious webpage and execute arbitrary script code within the context of the target user's browser.
Affected Products
AlienVault OSSIM 5.2 and older versions
AlienVault USM 5.2 and older versions
Impact
System Compromise: Remote attackers can execute arbitrary script code within the context of the target user's browser
Recommended Actions
Apply the most recent upgrade or patch from the vendor.
https://www.alienvault.com/
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |
Version Updates
Date | Version | Detail |
---|---|---|
2019-06-10 | 14.629 | Severity:high:medium |