Vulnerability Description
Open Management Infrastructure (OMI) Elevation of Privilege Vulnerability
CVSS Score
7.8
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Azure Automation | - |
| Microsoft | Azure Automation Update Management | - |
| Microsoft | Azure Security Center | - |
| Microsoft | Azure Sentinel | - |
| Microsoft | Container Monitoring Solution | - |
| Microsoft | Log Analytics Agent | - |
| Microsoft | Operations Management Suite Agent For Linux | < 1.8.1-0 |
| Microsoft | System Center Operations Manager | 2019 |
Related Weaknesses (CWE)
References
- https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21330Vendor Advisory
- https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21330Vendor Advisory
FAQ
What is CVE-2024-21330?
CVE-2024-21330 is a vulnerability with a CVSS score of 7.8 (HIGH). Open Management Infrastructure (OMI) Elevation of Privilege Vulnerability
How severe is CVE-2024-21330?
CVE-2024-21330 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-21330?
Check the references section above for vendor advisories and patch information. Affected products include: Microsoft Azure Automation, Microsoft Azure Automation Update Management, Microsoft Azure Security Center, Microsoft Azure Sentinel, Microsoft Container Monitoring Solution.