• Support
  • Forums
  • Blogs

AlienVault v5.5.1 Hotfix - Important Update

jkisieliusjkisielius

AlienVault Employee
+11
Date: February 26, 2018 

Summary 

The AlienVault product team has released a hotfix (v5.5.1) to address a vulnerability discovered in USM Appliance and AlienVault OSSIM. Recently, a security researcher (Henry Huang) at CyCarrier CSIRT identified a remote code execution vulnerability in the USM Appliance web interface. After thorough analysis, it was determined that the severity of the vulnerability warranted a hotfix update.

If your USM Appliance is exposed to the internet, it is critical to patch immediately.

This vulnerability has been assigned CVE-2018-7279. CyCarrier has agreed to let AlienVault evaluate and patch this vulnerability before making the information publicly available. Our internal security researchers have evaluated the CVSS Overall score to be "8.4".

What We Have Done 

We have identified and resolved the issue. An update is now available on the AlienVault update server. Applying the update will patch your system(s) and eliminate the vulnerability. 

What You Should Do

All AlienVault OSSIM and USM Appliance customers should upgrade. All previous versions of AlienVault OSSIM and USM Appliance are vulnerable. 


tracy.danger

Share post:

Comments

  • Is there a agreed on data that CyCarrier will be making this information public? 
  • Does anybody know when 5.5.1 will be available at https://offlineupdate.alienvault.com/files/ for download? It was released almost 6 months ago, and still not appearing in the list of downloadable ISOs. 

    I know it says to contact support for the Offline Update for 5.5.1. I've contacted Support and so far they have sent me the link to the offline ISO for 5.5.0 and 5.1.1, neither of which I requested or need. 
Sign In or Register to comment.