Submit a ticketCall us

Get a crash course on Network Monitoring delivered right to your inbox
This free 7-day email course provides a primer to the philosophy, theory, and fundamental concepts involved in IT monitoring. Lessons will explain not only how to perform various monitoring tasks, but why and when you should use them. Sign up now.

Home > Success Center > Server & Application Monitor (SAM) > Privilege Vulnerability detected in SAM

Privilege Vulnerability detected in SAM

Table of contents

Updated July 28, 2016


This article explains why Zero Day Initiative detects a vulnerability in the Orion Alert Manager that allows it to execute scripts or programs. The Vulnerability ID is ZDI-14-428. More information in Zero Day Initiative (© 2016 Zero Day Initiative, available at, obtained on July 27, 2016.)


All SAM versions


This is by design and will not be changed. The purpose of the Alerting Service is to run actions configured by the user to run executables, run scripts, restart services, reboot servers, send emails, and so on.  Without the privilege of performing these actions, the Alerting Service cannot attempt to recover items that are currently in a failed state and cannot notify you of these failed states.



Last modified
22:12, 27 Jul 2016