Multiple vulnerabilities in Microsoft System Center

Description

Multiple vulnerabilities were found in Microsoft System Center. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, gain privileges.

Below is a complete list of vulnerabilities:

1. A remote code execution vulnerability in Open Management Infrastructure can be exploited remotely to execute arbitrary code.
2. An elevation of privilege vulnerability in Open Management Infrastructure can be exploited remotely to gain privileges.

Original advisories

• CVE-2021-38647

• CVE-2021-38648
• CVE-2021-38649
• CVE-2021-38645

Exploitation

Public exploits exist for this vulnerability.

Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.

Related products

• Microsoft-System-Center-Operations-Manager
• Microsoft-Azure

CVE list

• CVE-2021-38645
  critical
• CVE-2021-38649
  high
• CVE-2021-38647
  critical
• CVE-2021-38648
  critical

KB list

Read more

Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com