virus logo Intrusion Prevention

MS.Azure.Open.Management.Infrastructure.Remote.Code.Execution

description-logoDescription

This indicates an attack attempt to exploit a Remote Code Execution Vulnerability in Microsoft Open Management Infrastructure (OMI).
The vulnerability is due to an error when the vulnerable software handles a maliciously crafted request. An unauthenticated remote attacker may be able to exploit this to execute arbitrary code via a crafted HTTP request.

affected-products-logoAffected Products

Microsoft OMI before 1.6.8-1

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Apply the most recent upgrade or patch from the vendor.
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-38647

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2021-12-06 19.208 Sig Added
2021-09-29 18.167 Sig Added
2021-09-22 18.163 Default_action:pass:drop
2021-09-20 18.161

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-38647
ID 50767
Created Sep 17, 2021
Updated Dec 05, 2021
Threat Signal View Report
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon
CVE ID CVE-2021-38647
Known Exploited Yes
Exploit Prediction Score 97.46%
Default Action drop
Active
Affected OS Linux, Solaris
Affected App Other