Microsoft: >> System Center Operations Manager Security Vulnerabilities
CVE-2021-38645
Open Management Infrastructure Elevation of Privilege Vulnerability
Known exploited
CVSS Score
7.8
EPSS Score
0.31
Published
2021-09-15
System Center Operations Manager Elevation of Privilege Vulnerability
CVSS Score
8.8
EPSS Score
0.006
Published
2021-02-25
A spoofing vulnerability exists when System Center Operations Manager (SCOM) does not properly sanitize a specially crafted web request to an affected SCOM instance, aka 'System Center Operations Manager Spoofing Vulnerability'.
CVSS Score
5.4
EPSS Score
0.003
Published
2020-06-09
Cross-site scripting (XSS) vulnerability in Microsoft System Center 2012 Operations Manager Gold before Rollup 8, SP1 before Rollup 10, and R2 before Rollup 7 allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka "System Center Operations Manager Web Console XSS Vulnerability."
CVSS Score
4.3
EPSS Score
0.145
Published
2015-08-15
Cross-site scripting (XSS) vulnerability in Microsoft System Center Operations Manager 2007 SP1 and R2 allows remote attackers to inject arbitrary web script or HTML via crafted input, aka "System Center Operations Manager Web Console XSS Vulnerability," a different vulnerability than CVE-2013-0010.
CVSS Score
4.3
EPSS Score
0.249
Published
2013-01-09
Cross-site scripting (XSS) vulnerability in Microsoft System Center Operations Manager 2007 SP1 and R2 allows remote attackers to inject arbitrary web script or HTML via crafted input, aka "System Center Operations Manager Web Console XSS Vulnerability," a different vulnerability than CVE-2013-0009.
CVSS Score
4.3
EPSS Score
0.249
Published
2013-01-09
Page 2