CVE-2026-20967 System Center Operations Manager (SCOM) Elevation of Privilege Vulnerability

🗓️ 10 Mar 2026 17:05:06Reported by microsoftType

CVE-2026-20967 affects System Center Operations Manager with an elevation of privilege vulnerability.

Reporter	Title	Published	Views	Family All 13
Circl	CVE-2026-20967	10 Mar 202616:57	–	circl
CNNVD	Microsoft System Center Operations Manager 输入验证错误漏洞	10 Mar 202600:00	–	cnnvd
CVE	CVE-2026-20967	10 Mar 202617:05	–	cve
EUVD	EUVD-2026-10567	10 Mar 202618:31	–	euvd
EUVD	EUVD-2026-10568	10 Mar 202618:31	–	euvd
Kaspersky	KLA90923 PE vulnerability in Microsoft System Center	10 Mar 202600:00	–	kaspersky
Microsoft CVE	System Center Operations Manager (SCOM) Elevation of Privilege Vulnerability	10 Mar 202614:00	–	mscve
NVD	CVE-2026-20967	10 Mar 202618:18	–	nvd
OSV	CVE-2026-20967	10 Mar 202618:18	–	osv
Positive Technologies	PT-2026-24259	10 Mar 202600:00	–	ptsecurity

[
  {
    "vendor": "Microsoft",
    "product": "System Center Operations Manager 2019",
    "versions": [
      {
        "version": "10.19.0",
        "lessThan": "10.19.10658.0",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "System Center Operations Manager 2022",
    "versions": [
      {
        "version": "10.22.0",
        "lessThan": "10.22.11951.0",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "System Center Operations Manager 2025",
    "versions": [
      {
        "version": "1.0.0",
        "lessThan": "10.25.10377.0",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  }
]

Source	Link
msrc	www.msrc.microsoft.com/update-guide/vulnerability/CVE-2026-20967

14 Apr 2026 16:36Current

CVSS 3.18.8

EPSS0.00099

CWE-20