CVE-2020-22650

HIGH

AlienVault Ossim <5 - Memory Corruption

Title source: llm

Description

A memory leak vulnerability in sim-organizer.c of AlienVault Ossim v5 causes a denial of service (DOS) via a system crash triggered by the occurrence of a large number of alarm events.

References (1)

[Third Party Advisory] https://github.com/jpalanco/alienvault-ossim/issues/4

Scores

CVSS v3 7.5

EPSS 0.0033

EPSS Percentile 55.9%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Classification

CWE

CWE-401

Status published

Affected Products (1)

att/alienvault_ossim

Timeline

Published Jul 19, 2021

Tracked Since Feb 18, 2026