90 matches found
Microsoft Azure 安全漏洞
Microsoft Azure is a suite of open, enterprise-grade cloud computing platforms from the U.S.-based Microsoft Corporation Microsoft. A security vulnerability exists in Microsoft Azure. The following products and versions are affected: Azure Automation State Configuration, DSC Extension, Azure...
PT-2022-3189 · Unknown · Open Management Infrastructure
Name of the Vulnerable Software and Affected Versions: Open Management Infrastructure OMI affected versions not specified Description: The issue is related to an Elevation of Privilege Vulnerability in Open Management Infrastructure OMI, which is associated with inadequate access control...
The vulnerability of the enterprise management server through the Internet-based Open Management Infrastructure (OMI) for virtual machine management in Azure allows attackers to escalate their privileges due to lack of access control mechanisms.
The vulnerability of the enterprise management server through the Internet-based Open Management Infrastructure OMI extensions for managing virtual machines in Azure is related to deficiencies in access control. Exploiting this vulnerability can allow attackers to enhance their privileges...
The vulnerability of the enterprise management server through the Internet-based Open Management Infrastructure (OMI) for virtual machine management in Azure allows attackers to escalate their privileges due to lack of access control mechanisms.
The vulnerability of the enterprise management server through the Internet-based Open Management Infrastructure OMI extensions for managing virtual machines in Azure is related to deficiencies in access control. Exploiting this vulnerability can allow attackers to enhance their privileges...
The vulnerability of the enterprise management server through the Internet-based Open Management Infrastructure (OMI) for virtual machine management in Azure allows attackers to escalate their privileges due to lack of access control mechanisms.
The vulnerability of the enterprise management server through the Internet-based Open Management Infrastructure OMI extensions for managing virtual machines in Azure is related to deficiencies in access control. Exploiting this vulnerability can allow attackers to enhance their privileges...
The vulnerability of the enterprise management server through the Internet-based Open Management Infrastructure (OMI) for virtual machine management in Azure allows a attacker to execute arbitrary code, resulting in management code generation errors.
The vulnerability of the enterprise management server through the Internet-based Open Management Infrastructure OMI for managing virtual machines in Azure is related to errors in code generation. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...
Microsoft Open Management Infrastructure (OMI) Privilege Escalation Vulnerability
Microsoft Open Management Infrastructure OMI within Azure VM Management Extensions contains an unspecified vulnerability that allows for privilege escalation...
Security Bulletin: IBM QRadar Azure marketplace images include Open Management Infrastructure RPM, which is vulnerable to Remote Code Execution (CVE-2021-38647)
Summary IBM QRadar Azure marketplace images include the Open Management Infrastructure RPM which is vulnerable to CVE-2021-38647. Although we do not expose the affected port, we suggest updating out of an abundance of caution. Vulnerability Details CVEID: CVE-2021-38647 DESCRIPTION: Microsoft Azu...
Microsoft Azure Open Management Infrastructure remote command execution
Added: 09/28/2021 Background Microsoft Azure Open Management Infrastructure is an open source project to further the development of a production quality implementation of the DMTF CIM/WBEM standards. Problem A vulnerability in Open Management Infrastructure allows remote attackers to execute...
Microsoft Azure Open Management Infrastructure remote command execution
Added: 09/28/2021 Background Microsoft Azure Open Management Infrastructure is an open source project to further the development of a production quality implementation of the DMTF CIM/WBEM standards. Problem A vulnerability in Open Management Infrastructure allows remote attackers to execute...
Microsoft Open Management Infrastructure Remote Code Execution (CVE-2021-38647)
A remote code execution vulnerability exists in Microsoft Open Management Infrastructure. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft Open Management Infrastructure RCE (CVE-2021-38647)
Binary data omicve-2021-38647.nbin...
Exploit for CVE-2021-38647
It is an offensive tool for testing CVE-2021-38647, a vulnerabil...
VulnCheck KEV: CVE-2021-38648
Microsoft Open Management Infrastructure OMI within Azure VM Management Extensions contains an unspecified vulnerability allowing privilege escalation...
Microsoft Open Management Infrastructure < 1.6.8.1 Multiple Vulnerabilities
The version of Azure Open Management Infrastructure installed on the remote host is prior to 1.6.8.1. It is, therefore, affected by multiple vulnerabilities: - A remote code execution vulnerability exists in the OMI agent. An unauthenticated, remote attacker can exploit this to bypass...
VulnCheck KEV: CVE-2021-38645
Microsoft Open Management Infrastructure OMI within Azure VM Management Extensions contains an unspecified vulnerability that allows for privilege escalation...
VulnCheck KEV: CVE-2021-38649
Microsoft Open Management Infrastructure OMI within Azure VM Management Extensions contains an unspecified vulnerability allowing privilege escalation...
Microsoft Open Management Infrastructure Detection (Unix / Linux)
Binary data microsoftominixinstalled.nbin...
VulnCheck KEV: CVE-2021-38647
Microsoft Open Management Infrastructure OMI within Azure VM Management Extensions contains an unspecified vulnerability allowing remote code execution...
Critical Flaws Discovered in Azure App That Microsoft Secretly Installs on Linux VMs
Microsoft on Tuesday addressed a quartet of security flaws as part of its Patch Tuesday updates that could be abused by adversaries to target Azure cloud customers and elevate privileges as well as allow for remote takeover of vulnerable systems. The list of flaws, collectively called OMIGOD by...