← back
CVE-2016-8582

CVE-2016-8582

EPSS 57.4%
A vulnerability exists in gauge.php of AlienVault OSSIM and USM before 5.3.2 that allows an attacker to execute an arbitrary SQL query and retrieve database information or read local system files via MySQL's LOAD_FILE.
Affected products
n/a · n/a
public PoCs found2
cve_referencewww.exploit-db.com/exploits/40684/unverifiedexploitdbwww.exploit-db.com/exploits/40684unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://www.alienvault.com/forums/discussion/7766/security-advisory-alienvault-5-3-2-address-70-vulnerabilitieshttps://www.exploit-db.com/exploits/40684/http://www.securityfocus.com/bid/93866