CVE-2021-38647

Published Sep 15, 2021

Last updated 4 months ago

Exploit known CVSS critical 9.8

Overview

Description: Open Management Infrastructure Remote Code Execution Vulnerability
Source: secure@microsoft.com
NVD status: Analyzed
Products: azure_automation_state_configuration, azure_automation_update_management, azure_diagnostics_\(lad\), azure_open_management_infrastructure, azure_security_center, azure_sentinel, azure_stack_hub, container_monitoring_solution, log_analytics_agent, system_center_operations_manager

Risk scores

CVSS 3.1

Type: Secondary
Base score: 9.8
Impact score: 5.9
Exploitability score: 3.9
Vector string: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Severity: CRITICAL

CVSS 2.0

Type: Primary
Base score: 7.5
Impact score: 6.4
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:P/I:P/A:P

Known exploits

Data from CISA

Vulnerability name: Microsoft Open Management Infrastructure (OMI) Remote Code Execution Vulnerability
Exploit added on: Nov 3, 2021
Exploit action due: Nov 17, 2021
Required action: Apply updates per vendor instructions.

Weaknesses

nvd@nist.gov: NVD-CWE-noinfo

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:microsoft:azure_automation_state_configuration:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "DEC617A6-F1BC-44DE-A9BB-BECF2E788B0E",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:microsoft:azure_automation_update_management:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "23A8B342-E863-4C71-9CE1-FB325FF34829",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:microsoft:azure_diagnostics_\\(lad\\):-:*:*:*:*:*:*:*",
            "matchCriteriaId": "37AC51D6-F6F3-45D8-91E7-6EDD01C0273E",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:microsoft:azure_open_management_infrastructure:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "8477F336-71BB-4C49-A4EB-E1BC1EFF2F49",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:microsoft:azure_security_center:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "BA1626DA-5B19-4291-B840-633EF458984C",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:microsoft:azure_sentinel:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "B80F8C3B-BEF9-43D5-9455-6C6F608CF519",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:microsoft:azure_stack_hub:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "B457DA44-AD83-4E5C-B180-8A227462EC60",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:microsoft:container_monitoring_solution:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "68A461E8-C834-4F97-98E3-516A191A3BAA",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:microsoft:log_analytics_agent:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "FDAE892B-324C-45E3-BFA0-C2B7B6939F54",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:microsoft:system_center_operations_manager:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "79983385-D5FE-4F76-924C-A2AA7E5BAAE8",
            "vulnerable": true
          }
        ],
        "negate": false,
        "operator": "OR"
      }
    ]
  }
]

References

Sources include official advisories and independent security research.

Overview

Risk scores

CVSS 3.1

CVSS 2.0

Known exploits

Weaknesses

Social media

Configurations

Related CVEs

References