Описание
SCOM Information Disclosure Vulnerability
FAQ
In what instances do I need to install the security update for this vulnerability?
This vulnerability only affects machines that have the SCOM web console installed. SCOM web console server machines should have this update installed to be protected from the vulnerability.
Do I need to install the update if my machine is not set up as a web console server?
No. Customers whose machines are not SCOM web console server machines do not need to install this update.
What type of information could be disclosed by this vulnerability?
The type of information that could be disclosed if an attacker successfully exploited this vulnerability is file content.
Обновления
| Продукт | Статья | Обновление |
|---|---|---|
| System Center 2016 Operations Manager | ||
| System Center 2019 Operations Manager | ||
| System Center 2012 R2 Operations Manager |
Показывать по
Возможность эксплуатации
Publicly Disclosed
Exploited
Latest Software Release
Older Software Release
DOS
EPSS
7.5 High
CVSS3
Связанные уязвимости
Уязвимость программы для управления и мониторинга ИТ-сервисов System Center Operations Manager (SCOM), связанная с недостаточной защитой служебных данных, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации
EPSS
7.5 High
CVSS3