KLA61974
Multiple vulnerabilities in Microsoft System Center

Updated: 11/15/2023

Detect date ?	11/14/2023
Severity ?	High
Description	Multiple vulnerabilities were found in Microsoft System Center. Malicious users can exploit these vulnerabilities to gain privileges, obtain sensitive information. Below is a complete list of vulnerabilities: An elevation of privilege vulnerability in Microsoft Windows Defender can be exploited remotely to gain privileges. An information disclosure vulnerability in Open Management Infrastructure can be exploited remotely to obtain sensitive information.
Affected products	System Center Operations Manager (SCOM) 2019 System Center Operations Manager (SCOM) 2022 System Center Operations Manager (SCOM) 2016 Windows Defender Antimalware Platform
Solution	Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)
Original advisories	CVE-2023-36422 CVE-2023-36043
Impacts ?	OSI [?] PE [?]
Related products	Microsoft Windows Microsoft System Center Operations Manager Windows Defender
CVE-IDS ?	CVE-2023-364227.8Critical CVE-2023-360436.5High
	Find out the statistics of the vulnerabilities spreading in your region

KLA61974Multiple vulnerabilities in Microsoft System Center