CVE-2021-38647

Name of the Vulnerable Software and Affected Versions Open Management Infrastructure (OMI) (affected versions not specified)

Description The issue is related to a remote code execution vulnerability in the Open Management Infrastructure (OMI) agent, which is installed by default in Linux environments on Microsoft Azure. This vulnerability, also known as OMIGOD, allows an attacker to execute arbitrary code with root privileges. The problem is present in the OMI Agent application, which is installed without the user's knowledge. The estimated number of potentially affected devices worldwide is not specified, but it is mentioned that the vulnerability affects countless Azure customers. There is no information about real-world incidents where this issue was exploited.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.