Vulnerabilities > Ossec > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-03-05 | CVE-2021-28040 | Uncontrolled Recursion vulnerability in Ossec 3.6.0 An issue was discovered in OSSEC 3.6.0. | 7.5 |
| 2020-01-30 | CVE-2020-8442 | Out-of-bounds Write vulnerability in Ossec In OSSEC-HIDS 2.7 through 3.5.0, the server component responsible for log analysis (ossec-analysisd) is vulnerable to a heap-based buffer overflow in the rootcheck decoder component via an authenticated client. | 8.8 |
| 2018-11-29 | CVE-2018-19666 | Path Traversal vulnerability in multiple products The agent in OSSEC through 3.1.0 on Windows allows local users to gain NT AUTHORITY\SYSTEM access via Directory Traversal by leveraging full access to the associated OSSEC server. | 7.8 |
| 2017-09-07 | CVE-2015-3222 | Permissions, Privileges, and Access Controls vulnerability in Ossec syscheck/seechanges.c in OSSEC 2.7 through 2.8.1 on NIX systems allows local users to execute arbitrary code as root. | 7.0 |