| CVE Number | Vulnerability | Product | Severity | Date |
|---|---|---|---|---|
| CVE-2024-21330 | Elevation of Privilege | Microsoft Open Management Infrastructure (OMI) | Important | 19-03-2024 |
Technical Information
An autheticated attacker needs access to necessary socket files to control OMI service and locally elevate privileges to communicate with OMI servers as root user.
Patch release date: Mar 12, 2024
Further information on this vulnerability is available at : CVE-2024-21330
Affected Software
System Center Operations Manager (SCOM) 2019,System Center Operations Manager (SCOM) 2022,
Azure Automation,
Azure Automation Update Management,
Azure Sentinel,
Container Monitoring Solution,
Open Management Infrastructure,
Operations Management Suite Agent for Linux (OMS),
Azure Security Center,
Log Analytics Agent