System Center Operations Manager
Sign in to watchby Microsoft
CVEs (9)
| CVE | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2021-38647 | 0.29 | — | 0.94 | KEV | Sep 15, 2021 | Open Management Infrastructure Remote Code Execution Vulnerability | |
| CVE-2021-38648 | 0.18 | — | 0.32 | KEV | Sep 15, 2021 | Open Management Infrastructure Elevation of Privilege Vulnerability | |
| CVE-2021-38645 | 0.13 | — | 0.12 | KEV | Sep 15, 2021 | Open Management Infrastructure Elevation of Privilege Vulnerability | |
| CVE-2021-38649 | 0.12 | — | 0.05 | KEV | Sep 15, 2021 | Open Management Infrastructure Elevation of Privilege Vulnerability | |
| CVE-2013-0010 | 0.02 | — | 0.25 | Jan 9, 2013 | Cross-site scripting (XSS) vulnerability in Microsoft System Center Operations Manager 2007 SP1 and R2 allows remote attackers to inject arbitrary web script or HTML via crafted input, aka "System Center Operations Manager Web Console XSS Vulnerability," a different vulnerability than CVE-2013-0009. | ||
| CVE-2013-0009 | 0.02 | — | 0.25 | Jan 9, 2013 | Cross-site scripting (XSS) vulnerability in Microsoft System Center Operations Manager 2007 SP1 and R2 allows remote attackers to inject arbitrary web script or HTML via crafted input, aka "System Center Operations Manager Web Console XSS Vulnerability," a different vulnerability than CVE-2013-0010. | ||
| CVE-2021-41352 | 0.01 | — | 0.11 | Oct 13, 2021 | SCOM Information Disclosure Vulnerability | ||
| CVE-2015-2420 | 0.01 | — | 0.13 | Aug 15, 2015 | Cross-site scripting (XSS) vulnerability in Microsoft System Center 2012 Operations Manager Gold before Rollup 8, SP1 before Rollup 10, and R2 before Rollup 7 allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka "System Center Operations Manager Web Console XSS Vulnerability." | ||
| CVE-2021-1728 | 0.00 | — | 0.02 | Feb 25, 2021 | System Center Operations Manager Elevation of Privilege Vulnerability |