Patch Tuesday: Critical Vulnerabilities in OMI Affecting Countless Azure Customers
TL;DR: We recently disclosed multiple vulnerabilities in Microsoft’s OMI agent – including unauthenticated RCE and LPE. These vulnerabilities affect countless Azure customers because this agent is a requirement for several Azure services, including: Azure Log Analytics, Azure Security Center, Azure Operations Management Suite. Microsoft fixed these vulnerabilities in today’s Patch Tuesday. The vulnerabilities affect any OMI installation and is not limited to Azure. Make sure you upgrade your OMI agents in order to mitigate the risk.
Your email address will not be published. Required fields are marked *
Save my name, email, and website in this browser for the next time I comment.
This site uses Akismet to reduce spam. Learn how your comment data is processed.
Username or Email Address