Azure Open Management Infrastructure (OMI) Elevation of Privilege Vulnerability
References
Link | Resource |
---|---|
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-29149 | Patch Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
20 Dec 2023, 22:15
Type | Values Removed | Values Added |
---|---|---|
Summary | (en) Azure Open Management Infrastructure (OMI) Elevation of Privilege Vulnerability |
24 Jun 2022, 19:07
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:microsoft:azure_stack_hub:*:*:*:*:*:*:*:* cpe:2.3:a:microsoft:azure_automation_state_configuration:-:*:*:*:*:*:*:* cpe:2.3:a:microsoft:container_monitoring_solution:-:*:*:*:*:*:*:* cpe:2.3:a:microsoft:azure_automation_update_management:-:*:*:*:*:*:*:* cpe:2.3:a:microsoft:log_analytics_agent:-:*:*:*:*:*:*:* cpe:2.3:a:microsoft:azure_security_center:*:*:*:*:*:*:*:* cpe:2.3:a:microsoft:azure_diagnostics:*:*:*:*:*:*:*:* cpe:2.3:a:microsoft:system_center_operations_manager:2016:-:*:*:*:*:*:* cpe:2.3:a:microsoft:system_center_operations_manager:2022:-:*:*:*:*:*:* cpe:2.3:a:microsoft:azure_sentinel:*:*:*:*:*:*:*:* cpe:2.3:a:microsoft:system_center_operations_manager:2019:-:*:*:*:*:*:* cpe:2.3:a:microsoft:open_management_infrastructure:*:*:*:*:*:*:*:* |
|
CVSS |
v2 : v3 : |
v2 : 4.6
v3 : 7.8 |
First Time |
Microsoft open Management Infrastructure
Microsoft azure Automation State Configuration Microsoft azure Sentinel Microsoft azure Stack Hub Microsoft container Monitoring Solution Microsoft log Analytics Agent Microsoft azure Security Center Microsoft Microsoft azure Diagnostics Microsoft system Center Operations Manager Microsoft azure Automation Update Management |
|
References | (MISC) https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-29149 - Patch, Vendor Advisory | |
CWE | NVD-CWE-noinfo |
15 Jun 2022, 22:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-06-15 22:15
Updated : 2023-12-20 22:15
NVD link : CVE-2022-29149
Mitre link : CVE-2022-29149
CVE.ORG link : CVE-2022-29149
JSON object : View
Products Affected
microsoft
- system_center_operations_manager
- azure_security_center
- azure_stack_hub
- azure_automation_update_management
- container_monitoring_solution
- open_management_infrastructure
- azure_diagnostics
- azure_automation_state_configuration
- azure_sentinel
- log_analytics_agent
CWE