更新 9 月 17 日： 9 月の月例セキュリティ更新日に公開した Open Management Infrastructure (OMI) の脆弱性 CVE-2021-38645, CVE-2021-38649, CVE-2021-38648, CVE-2021-38647 に関して、追加のガイダン

kaspersky 2

cisa 1

threatpost 2

nessus 3

msrc 3

thn 2

rapid7blog 4

attackerkb 4

malwarebytes 1

packetstorm 2

metasploit 2

zdt 2

prion 4

cve 4

githubexploit 13

saint 3

cisa_kev 4

mscve 4

ibm 1

checkpoint_advisories 1

nuclei 1

avleonov 1

krebs 1

qualysblog 3

kaspersky

KLA12297 Multiple vulnerabilities in Microsoft System Center

2021-09-14 00:00:00

KLA12286 Mutliple vulnerabilities in Microsoft Azure

2021-09-14 00:00:00

cisa

Microsoft Releases Security Update for Azure Linux Open Management Infrastructure

2021-09-16 00:00:00

threatpost

Azure Zero-Day Bugs Show Lurking Supply-Chain Risk

2021-09-16 11:37:48

Microsoft Patches Actively Exploited Windows Zero-Day

2021-09-14 20:29:14

nessus

Microsoft Open Management Infrastructure (OMI) package < 1.6.8-1 Multiple Vulnerabilities

2021-09-17 00:00:00

Microsoft Open Management Infrastructure < 1.6.8.1 Multiple Vulnerabilities

2021-09-17 00:00:00

Microsoft Open Management Infrastructure RCE (CVE-2021-38647)

2021-09-20 00:00:00

msrc

Additional Guidance Regarding OMI Vulnerabilities within Azure VM Management Extensions

2021-09-16 07:00:00

Additional Guidance Regarding OMI Vulnerabilities within Azure VM Management Extensions

2021-09-17 01:28:04

Additional Guidance Regarding OMI Vulnerabilities within Azure VM Management Extensions

2021-09-16 07:00:00

thn

Critical Flaws Discovered in Azure App That Microsoft Secretly Installs on Linux VMs

2021-09-15 18:36:00

Microsoft Releases Patch for Actively Exploited Windows Zero-Day Vulnerability

2021-09-15 05:00:00

rapid7blog

OMIGOD: How to Automatically Detect and Fix Microsoft Azure’s New OMI Vulnerability

2021-09-15 14:30:57

Metasploit Wrap-Up

2021-11-12 15:36:09

Metasploit Wrap-Up

2021-10-29 17:59:46

attackerkb

CVE-2021-38645

2021-09-15 00:00:00

CVE-2021-38649

2021-09-15 00:00:00

CVE-2021-38648

2021-09-15 00:00:00

malwarebytes

[updated] Patch now! PrintNightmare over, MSHTML fixed, a new horror appears … OMIGOD

2021-09-15 13:19:48

packetstorm

Microsoft OMI Management Interface Authentication Bypass

2021-11-10 00:00:00

Microsoft OMI Management Interface Authentication Bypass

2021-10-28 00:00:00

metasploit

Microsoft OMI Management Interface Authentication Bypass

2021-10-27 16:05:56

Microsoft OMI Management Interface Authentication Bypass

2021-10-25 21:36:55

zdt

Microsoft OMI Management Interface Authentication Bypass Exploit

2021-11-10 00:00:00

Microsoft OMI Management Interface Authentication Bypass Exploit

2021-10-31 00:00:00

prion

Privilege escalation

2021-09-15 12:15:00

Remote code execution

2021-09-15 12:15:00

Privilege escalation

2021-09-15 12:15:00

cve

CVE-2021-38645

2021-09-15 12:15:00

CVE-2021-38649

2021-09-15 12:15:00

CVE-2021-38648

2021-09-15 12:15:00

githubexploit

Exploit for Improper Initialization in Microsoft

2021-09-22 01:05:22

Exploit for Improper Initialization in Microsoft

2021-09-26 18:06:00

Exploit for Improper Initialization in Microsoft

2021-09-16 08:33:02

saint

Microsoft Azure Open Management Infrastructure remote command execution

2021-09-28 00:00:00

Microsoft Azure Open Management Infrastructure remote command execution

2021-09-28 00:00:00

Microsoft Azure Open Management Infrastructure remote command execution

2021-09-28 00:00:00

cisa_kev

Microsoft Open Management Infrastructure (OMI) Privilege Escalation Vulnerability

2021-11-03 00:00:00

Microsoft Open Management Infrastructure (OMI) Privilege Escalation Vulnerability

2021-11-03 00:00:00

Microsoft Open Management Infrastructure (OMI) Remote Code Execution Vulnerability

2021-11-03 00:00:00

mscve

Open Management Infrastructure Elevation of Privilege Vulnerability

2021-09-14 07:00:00

Open Management Infrastructure Elevation of Privilege Vulnerability

2021-09-14 07:00:00

Open Management Infrastructure Remote Code Execution Vulnerability

2021-09-14 07:00:00

ibm

Security Bulletin: IBM QRadar Azure marketplace images include Open Management Infrastructure RPM, which is vulnerable to Remote Code Execution (CVE-2021-38647)

2021-09-30 15:02:10

checkpoint_advisories

Microsoft Open Management Infrastructure Remote Code Execution (CVE-2021-38647)

2021-09-21 00:00:00

nuclei

Microsoft Open Management Infrastructure - Remote Code Execution

2021-09-15 16:10:58

avleonov

Security News: Microsoft Patch Tuesday September 2021, OMIGOD, MSHTML RCE, Confluence RCE, Ghostscript RCE, FORCEDENTRY Pegasus

2021-09-18 23:22:00

krebs

Microsoft Patch Tuesday, September 2021 Edition

2021-09-14 21:00:42

qualysblog

Microsoft and Adobe Patch Tuesday (September 2021) – Microsoft 60 Vulnerabilities with 3 Critical, Adobe 61 Vulnerabilities

2021-09-14 18:56:17

Qualys Response to CISA Alert: Binding Operational Directive 22-01

2021-11-09 06:15:01

Managing CISA Known Exploited Vulnerabilities with Qualys VMDR

2022-02-23 05:39:00

Products

Security Intelligence
Non-intrusive assessment
Developers SDK
Windows scanner
Linux scanner
Perimeter control tool
MSSP

Database

Vulnerabilities
Exploits
IOC
Security News
BugBounty
Popular
Wild Exploited
Top Vulnerabilities

Tools

Linux Security Scanner
API integration
Subscriptions
Plugins
Manual Audit

Learn More

Stats
API
Docs
Api-keys
License
Pricing
Glossary
FAQ

Company

Blog
Contacts
About Us
OpenSource
EULA
Brand Guideline
Privacy Policy

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply. All product names, logos, and brands are property of their respective owners. All company, product and service names used in this website are for identification purposes only. Use of these names, logos, and brands does not imply endorsement.If you are an owner of some content and want it to be removed, please contact us. Using Vulners services you are accepting Vulners services end-user license agreement

@2024 Vulners Inc

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.975 High

EPSS

Percentile

100.0%

JSON

Related for MSRC:768A8F29C87F38A1D05DD51DD3C9B107