System_center_operations_manager - Vulncode-DB

Note:

This project will be discontinued after December 13, 2021. [more]

Product:
System_center_operations_manager
(Microsoft)

Repositories	Unknown: This might be proprietary software.
#Vulnerabilities	16

Date	Id	Summary	Products	Score	Patch	Annotated
2025-04-08	CVE-2025-27743	Untrusted search path in System Center allows an authorized attacker to elevate privileges locally.	System_center_data_protection_manager, System_center_operations_manager, System_center_orchestrator, System_center_service_manager, System_center_virtual_machine_manager	7.8
2022-08-09	CVE-2022-33640	System Center Operations Manager: Open Management Infrastructure (OMI) Elevation of Privilege Vulnerability	Open_management_infrastructure, System_center_operations_manager	N/A
2021-09-15	CVE-2021-38645	Open Management Infrastructure Elevation of Privilege Vulnerability	Azure_automation_state_configuration, Azure_automation_update_management, Azure_diagnostics_\(Lad\), Azure_open_management_infrastructure, Azure_security_center, Azure_sentinel, Azure_stack_hub, Container_monitoring_solution, Log_analytics_agent, System_center_operations_manager	N/A
2021-09-15	CVE-2021-38647	Open Management Infrastructure Remote Code Execution Vulnerability	Azure_automation_state_configuration, Azure_automation_update_management, Azure_diagnostics_\(Lad\), Azure_open_management_infrastructure, Azure_security_center, Azure_sentinel, Azure_stack_hub, Container_monitoring_solution, Log_analytics_agent, System_center_operations_manager	N/A
2021-09-15	CVE-2021-38648	Open Management Infrastructure Elevation of Privilege Vulnerability	Azure_automation_state_configuration, Azure_automation_update_management, Azure_diagnostics_\(Lad\), Azure_open_management_infrastructure, Azure_security_center, Azure_sentinel, Azure_stack_hub, Container_monitoring_solution, Log_analytics_agent, System_center_operations_manager	N/A
2021-09-15	CVE-2021-38649	Open Management Infrastructure Elevation of Privilege Vulnerability	Azure_automation_state_configuration, Azure_automation_update_management, Azure_diagnostics_\(Lad\), Azure_open_management_infrastructure, Azure_security_center, Azure_sentinel, Azure_stack_hub, Container_monitoring_solution, Log_analytics_agent, System_center_operations_manager	N/A
2022-06-15	CVE-2022-29149	Open Management Infrastructure (OMI) Elevation of Privilege Vulnerability	Azure_automation_state_configuration, Azure_automation_update_management, Azure_diagnostics, Azure_security_center, Azure_sentinel, Azure_stack_hub, Container_monitoring_solution, Log_analytics_agent, Open_management_infrastructure, System_center_operations_manager	N/A
2024-03-12	CVE-2024-21330	Open Management Infrastructure (OMI) Elevation of Privilege Vulnerability	Azure_automation, Azure_automation_update_management, Azure_security_center, Azure_sentinel, Container_monitoring_solution, Log_analytics_agent, Operations_management_suite_agent_for_linux, System_center_operations_manager	N/A
2024-03-12	CVE-2024-21334	Open Management Infrastructure (OMI) Remote Code Execution Vulnerability	Open_management_infrastructure, System_center_operations_manager	N/A
2020-06-09	CVE-2020-1331	A spoofing vulnerability exists when System Center Operations Manager (SCOM) does not properly sanitize a specially crafted web request to an affected SCOM instance, aka 'System Center Operations Manager Spoofing Vulnerability'.	System_center_operations_manager	5.4