Open Management Infrastructure Remote Code Execution Vulnerability - CVE-2023-36043 (rpm)ID: oval:org.secpod.oval:def:94659 | Date: (C)2023-11-20 (M)2023-11-27 |
Class: VULNERABILITY | Family: unix |
The host is installed with Open Management Infrastructure before 1.7.1-0 and is prone to an information disclosure vulnerability. Successful exploitation of this vulnerability could allow an attacker to access credentials of privileged accounts stored in trace logs on the machine being monitored by SCOM. Successful exploitation of this vulnerability requires an attacker be an authenticated user with read access to the trace file on the machine being monitored with SCOM and OMI installed.
Product: |
Open Management Infrastructure |