CVE-2024-21330: Open Management Infrastructure (OMI) Elevation of Privilege Vulnerability

high7.8CVSS 3.1

AVLACLPRLUINSUCHIHAH

Open Management Infrastructure (OMI) Elevation of Privilege Vulnerability

Affected

25 ranges

Vendor	Product	Version range	Fixed in
microsoft	azure_automation	>= 1.0.0 < OMS Agent for Linux GA 1.19.0	OMS Agent for Linux GA 1.19.0
microsoft	azure_automation_update_management	>= 1.0.0 < OMS Agent for Linux GA v1.19.0	OMS Agent for Linux GA v1.19.0
microsoft	azure_hdinsight	>= 1.0 < omi-1.8.1-0	omi-1.8.1-0
microsoft	azure_security_center	>= 1.0.0 < OMS Agent for Linux GA 1.19.0	OMS Agent for Linux GA 1.19.0
microsoft	azure_sentinel	>= 1.0.0 < OMS Agent for Linux GA v1.19.0	OMS Agent for Linux GA v1.19.0
microsoft	container_monitoring_solution	>= 1.0.0 < microsoft-oms-latest with full ID: sha256:855bfeb0	microsoft-oms-latest with full ID: sha256:855bfeb0
microsoft	log_analytics_agent	>= 1.0.0 < OMS Agent for Linux GA v1.19.0	OMS Agent for Linux GA v1.19.0
microsoft	open_management_infrastructure	>= 1.0.0 < 1.8.1-0	1.8.1-0
microsoft	open_management_infrastructure	>= 16.0 < OMI version 1.8.1-0	OMI version 1.8.1-0
microsoft	operations_management_suite_agent_for_linux	< 1.8.1-0	1.8.1-0
microsoft	system_center_operations_manager	—	—
microsoft	system_center_operations_manager	—	—
microsoft	system_center_operations_manager_2019	>= 10.19.0 < 10.19.1253.0	10.19.1253.0
microsoft	system_center_operations_manager_2022	>= 10.22.0 < 10.22.1070.0	10.22.1070.0
msrc	azure_automation	—	—
msrc	azure_automation_update_management	—	—
msrc	azure_hdinsight	—	—
msrc	azure_security_center	—	—
msrc	azure_sentinel	—	—
msrc	container_monitoring_solution	—	—
msrc	log_analytics_agent	—	—
msrc	open_management_infrastructure	—	—
msrc	operations_management_suite_agent_for_linux	—	—
msrc	system_center_operations_manager_2019	—	—
msrc	system_center_operations_manager_2022	—	—