Note:
This project will be discontinued after December 13, 2021. [more]
Product:
System_center_operations_manager
(Microsoft)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 13 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2021-09-15 | CVE-2021-38648 | Open Management Infrastructure Elevation of Privilege Vulnerability | Azure_automation_state_configuration, Azure_automation_update_management, Azure_diagnostics_\(Lad\), Azure_open_management_infrastructure, Azure_security_center, Azure_sentinel, Azure_stack_hub, Container_monitoring_solution, Log_analytics_agent, System_center_operations_manager | 7.8 | ||
| 2021-09-15 | CVE-2021-38649 | Open Management Infrastructure Elevation of Privilege Vulnerability | Azure_automation_state_configuration, Azure_automation_update_management, Azure_diagnostics_\(Lad\), Azure_open_management_infrastructure, Azure_security_center, Azure_sentinel, Azure_stack_hub, Container_monitoring_solution, Log_analytics_agent, System_center_operations_manager | 7.0 | ||
| 2023-11-14 | CVE-2023-36043 | Open Management Infrastructure Information Disclosure Vulnerability | System_center_operations_manager | 6.5 | ||
| 2021-02-25 | CVE-2021-1728 | System Center Operations Manager Elevation of Privilege Vulnerability | System_center_operations_manager | 8.8 | ||
| 2021-10-13 | CVE-2021-41352 | SCOM Information Disclosure Vulnerability | System_center_operations_manager | 7.5 | ||
| 2022-08-09 | CVE-2022-33640 | System Center Operations Manager: Open Management Infrastructure (OMI) Elevation of Privilege Vulnerability | Open_management_infrastructure, System_center_operations_manager | 7.8 | ||
| 2020-06-09 | CVE-2020-1331 | A spoofing vulnerability exists when System Center Operations Manager (SCOM) does not properly sanitize a specially crafted web request to an affected SCOM instance, aka 'System Center Operations Manager Spoofing Vulnerability'. | System_center_operations_manager | N/A | ||
| 2015-08-14 | CVE-2015-2420 | Cross-site scripting (XSS) vulnerability in Microsoft System Center 2012 Operations Manager Gold before Rollup 8, SP1 before Rollup 10, and R2 before Rollup 7 allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka "System Center Operations Manager Web Console XSS Vulnerability." | System_center_operations_manager | N/A | ||
| 2013-01-09 | CVE-2013-0010 | Cross-site scripting (XSS) vulnerability in Microsoft System Center Operations Manager 2007 SP1 and R2 allows remote attackers to inject arbitrary web script or HTML via crafted input, aka "System Center Operations Manager Web Console XSS Vulnerability," a different vulnerability than CVE-2013-0009. | System_center_operations_manager | N/A | ||
| 2013-01-09 | CVE-2013-0009 | Cross-site scripting (XSS) vulnerability in Microsoft System Center Operations Manager 2007 SP1 and R2 allows remote attackers to inject arbitrary web script or HTML via crafted input, aka "System Center Operations Manager Web Console XSS Vulnerability," a different vulnerability than CVE-2013-0010. | System_center_operations_manager | N/A |