Lucene search
K

8 matches found

Tenable Nessus
Tenable Nessus
added 2021/09/17 12:0 a.m.1273 views

Microsoft Open Management Infrastructure (OMI) package < 1.6.8-1 Multiple Vulnerabilities

The version of Microsoft Open Management Infrastructure OMI package installed on the remote host is prior to 1.6.8-1. It is, therefore, affected by multiple vulnerabilities: - A remote code execution vulnerability exists in the OMI agent. An unauthenticated, remote attacker can exploit this to...

9.8CVSS8.7AI score0.99723EPSS
Exploits20References7
MSRC
MSRC
added 2021/09/16 7:0 a.m.43 views

Additional Guidance Regarding OMI Vulnerabilities within Azure VM Management Extensions

Last updated on October 5, 2021: See revision history located at the end of the post for changes. On September 14, 2021, Microsoft released fixes for three Elevation of Privilege EoP vulnerabilities and one unauthenticated Remote Code Execution RCE vulnerability in the Open Management...

9.8CVSS7.8AI score0.99723EPSS
Exploits20
Circl
Circl
added 2021/09/15 4:22 p.m.14 views

CVE-2021-38645

creationtimestamp| type| source ---|---|--- 2021-09-15 16:22:29+00:00| seen| https://t.me/cibsecurity/28884 2021-09-16 05:00:00+00:00| seen| https://msrc.microsoft.com/blog/2021/09/additional-guidance-regarding-omi-vulnerabilities-within-azure-vm-management-extensions/ 2021-11-08 08:58:18+00:00|...

7.8CVSS7.4AI score0.0189EPSS
Exploits0References6
Cvelist
Cvelist
added 2021/09/15 11:24 a.m.38 views

CVE-2021-38645 Open Management Infrastructure Elevation of Privilege Vulnerability

...

7.8CVSS8.9AI score0.0189EPSS
Exploits0References1
CVE
CVE
added 2021/09/15 11:24 a.m.1147 views

CVE-2021-38645

Open Management Infrastructure (OMI) in Azure VM Management Extensions contains CVE-2021-38645, an Elevation of Privilege vulnerability. OMI runs with root privileges; when vulnerable, it can be exploited locally to escalate privileges on affected hosts. Microsoft addressed the OMIGOD set (CVE-20...

7.8CVSS8.6AI score0.0189EPSS
In wildExploits0References2Affected Software10
ATTACKERKB
ATTACKERKB
added 2021/09/15 12:0 a.m.54 views

CVE-2021-38645

Open Management Infrastructure Elevation of Privilege Vulnerability Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed Attacker Value: 0...

7.8CVSS8.2AI score0.0189EPSS
In wildExploits0References2
MSRC
MSRC
added 2021/09/14 7:0 a.m.34 views

2021 年 9 月のセキュリティ更新プログラム (月例)

更新 9 月 17 日: 9 月の月例セキュリティ更新日に公開した Open Management Infrastructure OMI の脆弱性 CVE-2021-38645, CVE-2021-38649, CVE-2021-38648, CVE-2021-38647 に関して、追加のガイダン...

7.5CVSS0.8AI score0.99723EPSS
Exploits20
Kaspersky
Kaspersky
added 2021/09/14 12:0 a.m.61 views

KLA12297 Multiple vulnerabilities in Microsoft System Center

Multiple vulnerabilities were found in Microsoft System Center. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, gain privileges. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in Open Management...

9.8CVSS9.3AI score0.99723EPSS
Exploits20References8
Rows per page
Query Builder