Microsoft Open Management Infrastructure - Remote Code Execution

Microsoft Open Management Infrastructure is susceptible to remote code execution OMIGOD. id: CVE-2021-38647 info: name: Microsoft Open Management Infrastructure - Remote Code Execution author: daffainfo,xstp severity: critical description: Microsoft Open Management Infrastructure is susceptible t...

EUVD-2014-2639

Malware in sbrugna...

Malicious code in @zalastax/nolb-omi (npm)

The package @zalastax/nolb-omi was found to contain malicious code...

MAL-2025-12812 Malicious code in @zalastax/nolb-omi (npm)

The package @zalastax/nolb-omi was found to contain malicious code...

Security Bulletin: IBM QRadar SIEM on Azure Cloud deployed from Azure Marketplace is vulnerable to remote code execution (CVE-2024-21334)

Summary IBM QRadar SIEM on Azure Cloud deployed from Azure Marketplace is vulnerable to a remote code execution issue found within the Microsoft Open Management Infrastructure OMI. The information below shows how to remove this vulnerable component. Vulnerability Details CVEID:CVE-2024-21334...

Exploit for CVE-2021-38647

CVE-2021-38647 AKA "OMIGOD" A Zeek package which detects CVE-2...

Microsoft Patch Tuesday March 2024 includes critical Hyper-V flaws

The March 2024 Patch Tuesday update includes patches for 61 Microsoft vulnerabilities. Only two of the vulnerabilities are rated critical and both of these are found in Windows Hyper-V. Hyper-V is a hardware virtualization product that allows you to run multiple operating systems as virtual...

Remote code execution

Open Management Infrastructure OMI Remote Code Execution Vulnerability...

Privilege escalation

Open Management Infrastructure OMI Elevation of Privilege Vulnerability...

CVE-2024-21334

CVE-2024-21334 is an Open Management Infrastructure (OMI) remote code execution vulnerability affecting Microsoft System Center Operations Manager (SCOM) environments that use OMI. Public sources indicate OMI under SCOM versions 2019 and 2022 can be exploited remotely via unauthenticated requests...

CVE-2024-21334 Open Management Infrastructure (OMI) Remote Code Execution Vulnerability

...

CVE-2024-21330

CVE-2024-21330 describes an elevation-of-privilege vulnerability in Microsoft’s Open Management Infrastructure (OMI). Public sources indicate this affects OMI alongside related System Center/OMS components, allowing an attacker with local access to obtain elevated privileges. The impact is descri...

CVE-2024-21330 Open Management Infrastructure (OMI) Elevation of Privilege Vulnerability

...

CVE-2022-33640

System Center Operations Manager: Open Management Infrastructure OMI Elevation of Privilege Vulnerability...

Privilege escalation

System Center Operations Manager: Open Management Infrastructure OMI Elevation of Privilege Vulnerability...

CVE-2022-33640

CVE-2022-33640 affects Microsoft System Center Operations Manager via Open Management Infrastructure (OMI). The connected docs identify an elevation of privilege vulnerability with a LOCAL attack vector, requiring LOW privileges and no user interaction (CVSSv3.1 base score 7.8, HIGH impact on con...

System Center Operations Manager: Open Management Infrastructure (OMI) Elevation of Privilege Vulnerability

...

Revisiting OMI: Analysis of CVE-2022-29149, a privilege escalation vulnerability in Azure OMI

Affected organizations are required to update installed agents that use the OMI cloud middleware software...

Microsoft Open Management Infrastructure (OMI) package < 1.6.9-1 Privilege Escalation Vulnerability

The version of Microsoft Open Management Infrastructure OMI package installed on the remote host is prior to 1.6.9-1. It is, therefore, affected by a privilege escalation vulnerability. An unauthenticated, remote attacker can exploit this, to gain privileged access to the system. Note that Nessus...

CVE-2022-29149

Open Management Infrastructure OMI Elevation of Privilege Vulnerability...