本ページは microsoft system_center_operations_manager に影響する公開済み CVE(NVD の CPE 経由で関連付け)を列挙します。各行に深刻度指標・概要・公開日が含まれます。
| CVE | 概要 | ソース | CVSS 最大値 | EPSS(%) | 公開 | 更新 |
|---|---|---|---|---|---|---|
| CVE-2026-20967 | Improper input validation in System Center Operations Manager allows an authorized attacker to elevate privileges over a network. | [email protected] | 8.8 | 1.06% | 2026-03-10 | 2026-06-17 |
| CVE-2025-27743 | Untrusted search path in System Center allows an authorized attacker to elevate privileges locally. | [email protected] | 7.8 | 0.84% | 2025-04-08 | 2026-06-17 |
| CVE-2024-21334 | Open Management Infrastructure (OMI) Remote Code Execution Vulnerability | [email protected] | 9.8 | 20.16% | 2024-03-12 | 2026-06-17 |
| CVE-2024-21330 | Open Management Infrastructure (OMI) Elevation of Privilege Vulnerability | [email protected] | 7.8 | 0.99% | 2024-03-12 | 2026-06-17 |
| CVE-2023-36043 | Open Management Infrastructure Information Disclosure Vulnerability | [email protected] | 6.5 | 1.40% | 2023-11-14 | 2026-06-17 |
| CVE-2022-33640 | System Center Operations Manager: Open Management Infrastructure (OMI) Elevation of Privilege Vulnerability | [email protected] | 7.8 | 0.55% | 2022-08-09 | 2026-06-17 |
| CVE-2022-29149 | Open Management Infrastructure (OMI) Elevation of Privilege Vulnerability | [email protected] | 7.8 | 0.91% | 2022-06-15 | 2026-06-17 |
| CVE-2021-41352 | SCOM Information Disclosure Vulnerability | [email protected] | 7.5 | 2.79% | 2021-10-12 | 2026-06-17 |
| CVE-2021-38649 KEV | Open Management Infrastructure Elevation of Privilege Vulnerability | [email protected] | 7.0 | 1.90% | 2021-09-15 | 2026-06-17 |
| CVE-2021-38648 KEV | Open Management Infrastructure Elevation of Privilege Vulnerability | [email protected] | 7.8 | 10.93% | 2021-09-15 | 2026-06-17 |
| CVE-2021-38647 KEV | Open Management Infrastructure Remote Code Execution Vulnerability | [email protected] | 9.8 | 99.72% | 2021-09-15 | 2026-06-17 |
| CVE-2021-38645 KEV | Open Management Infrastructure Elevation of Privilege Vulnerability | [email protected] | 7.8 | 1.79% | 2021-09-15 | 2026-06-17 |
| CVE-2021-1728 | System Center Operations Manager Elevation of Privilege Vulnerability | [email protected] | 8.8 | 1.78% | 2021-02-25 | 2026-06-16 |
| CVE-2020-1331 | A spoofing vulnerability exists when System Center Operations Manager (SCOM) does not properly sanitize a specially crafted web request to an affected SCOM instance, aka 'System Center Operations Manager Spoofing Vulnerability'. | [email protected] | 5.4 | 1.26% | 2020-06-09 | 2026-06-16 |
| CVE-2015-2420 | Cross-site scripting (XSS) vulnerability in Microsoft System Center 2012 Operations Manager Gold before Rollup 8, SP1 before Rollup 10, and R2 before Rollup 7 allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka "System Center Operations Manager Web Console XSS Vulnerability." | [email protected] | 4.3 | 8.81% | 2015-08-14 | 2026-06-16 |
| CVE-2013-0010 | Cross-site scripting (XSS) vulnerability in Microsoft System Center Operations Manager 2007 SP1 and R2 allows remote attackers to inject arbitrary web script or HTML via crafted input, aka "System Center Operations Manager Web Console XSS Vulnerability," a different vulnerability than CVE-2013-0009. | [email protected] | 4.3 | 16.62% | 2013-01-09 | 2026-06-16 |
| CVE-2013-0009 | Cross-site scripting (XSS) vulnerability in Microsoft System Center Operations Manager 2007 SP1 and R2 allows remote attackers to inject arbitrary web script or HTML via crafted input, aka "System Center Operations Manager Web Console XSS Vulnerability," a different vulnerability than CVE-2013-0010. | [email protected] | 4.3 | 13.64% | 2013-01-09 | 2026-06-16 |