cvedb.io
CVE-2017-6972
CRITICAL · CVSS 9.8
EPSS exploitation probability: 0%
Published 2017-03-22T20:59:00.143 · Last modified 2026-06-17T01:23:24.450

Summary

AlienVault USM and OSSIM before 5.3.7 and NfSen before 1.3.8 have an error in privilege dropping and unnecessarily execute the NfSen Perl code as root, aka AlienVault ID ENG-104945, a different vulnerability than CVE-2017-6970 and CVE-2017-6971.

Affected products

alienvault — ossim

Does this affect you?

Add your gear to cvedb and we'll alert you only when alienvault ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.