Open Management Infrastructure Elevation of Privilege Vulnerability
CVE-2021-38649

7HIGH

Key Information:

Vendor: Microsoft
Status: Open Management Infrastructure; System Center Operations Manager (scom); Azure Automation State Configuration, Dsc Extension; Azure Automation Update Management
Vendor: CVE Published:; 15 September 2021

🔔 Create Microsoft Vulnerability Alert

Badges

👾 Exploit Exists🟣 EPSS 26%🦅 CISA Reported

What is CVE-2021-38649?

Open Management Infrastructure Elevation of Privilege Vulnerability

CISA has reported CVE-2021-38649

CISA provides regional cyber and physical services to support security and resilience across the United States. CISA monitor the most dangerious vulnerabilities and have identifed CVE-2021-38649 as being exploited but is not known by the CISA to be used in ransomware campaigns. This is subject to change at pace

The CISA's recommendation is: Apply updates per vendor instructions.

Affected Version(s)

Azure Automation State Configuration, DSC Extension Unknown 2.0.0

Azure Automation Update Management Unknown 1.0.0

Azure Diagnostics (LAD) Unknown 3.0.0

References

https://portal.msrc.microsoft.com/en-US/security-guidance...

x_refsource_MISC

EPSS Score

26% chance of being exploited in the next 30 days.

CVSS V3.1

Score:

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

👾
Exploit known to exist
Nov 3, 2021
🦅
CISA Reported
Nov 3, 2021
Vulnerability published
Sep 15, 2021
Vulnerability Reserved
Aug 13, 2021