Vulnerabilities (CVE)

Filtered by vendor Microsoft Subscribe
Filtered by product System Center Operations Manager
Total 13 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2015-2420 1 Microsoft 1 System Center Operations Manager 2024-11-21 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in Microsoft System Center 2012 Operations Manager Gold before Rollup 8, SP1 before Rollup 10, and R2 before Rollup 7 allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka "System Center Operations Manager Web Console XSS Vulnerability."
CVE-2013-0010 1 Microsoft 1 System Center Operations Manager 2024-11-21 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in Microsoft System Center Operations Manager 2007 SP1 and R2 allows remote attackers to inject arbitrary web script or HTML via crafted input, aka "System Center Operations Manager Web Console XSS Vulnerability," a different vulnerability than CVE-2013-0009.
CVE-2013-0009 1 Microsoft 1 System Center Operations Manager 2024-11-21 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in Microsoft System Center Operations Manager 2007 SP1 and R2 allows remote attackers to inject arbitrary web script or HTML via crafted input, aka "System Center Operations Manager Web Console XSS Vulnerability," a different vulnerability than CVE-2013-0010.
CVE-2022-29149 1 Microsoft 10 Azure Automation State Configuration, Azure Automation Update Management, Azure Diagnostics and 7 more 2024-09-10 4.6 MEDIUM 7.8 HIGH
Open Management Infrastructure (OMI) Elevation of Privilege Vulnerability
CVE-2021-38645 1 Microsoft 10 Azure Automation State Configuration, Azure Automation Update Management, Azure Diagnostics \(lad\) and 7 more 2024-07-29 4.6 MEDIUM 7.8 HIGH
Open Management Infrastructure Elevation of Privilege Vulnerability
CVE-2021-38647 1 Microsoft 10 Azure Automation State Configuration, Azure Automation Update Management, Azure Diagnostics \(lad\) and 7 more 2024-07-29 7.5 HIGH 9.8 CRITICAL
Open Management Infrastructure Remote Code Execution Vulnerability
CVE-2021-38648 1 Microsoft 10 Azure Automation State Configuration, Azure Automation Update Management, Azure Diagnostics \(lad\) and 7 more 2024-07-29 4.6 MEDIUM 7.8 HIGH
Open Management Infrastructure Elevation of Privilege Vulnerability
CVE-2021-38649 1 Microsoft 10 Azure Automation State Configuration, Azure Automation Update Management, Azure Diagnostics \(lad\) and 7 more 2024-07-29 4.6 MEDIUM 7.0 HIGH
Open Management Infrastructure Elevation of Privilege Vulnerability
CVE-2023-36043 1 Microsoft 1 System Center Operations Manager 2024-05-29 N/A 6.5 MEDIUM
Open Management Infrastructure Information Disclosure Vulnerability
CVE-2022-33640 1 Microsoft 2 Open Management Infrastructure, System Center Operations Manager 2024-02-04 N/A 7.8 HIGH
System Center Operations Manager: Open Management Infrastructure (OMI) Elevation of Privilege Vulnerability
CVE-2021-41352 1 Microsoft 1 System Center Operations Manager 2024-02-04 5.0 MEDIUM 7.5 HIGH
SCOM Information Disclosure Vulnerability
CVE-2021-1728 1 Microsoft 1 System Center Operations Manager 2024-02-04 6.5 MEDIUM 8.8 HIGH
System Center Operations Manager Elevation of Privilege Vulnerability
CVE-2020-1331 1 Microsoft 1 System Center Operations Manager 2024-02-04 3.5 LOW 5.4 MEDIUM
A spoofing vulnerability exists when System Center Operations Manager (SCOM) does not properly sanitize a specially crafted web request to an affected SCOM instance, aka 'System Center Operations Manager Spoofing Vulnerability'.