CISA Known Exploited Vulnerability

CVE-2021-38647 Ransomware

Microsoft · Open Management Infrastructure (OMI)

Microsoft Open Management Infrastructure (OMI) Remote Code Execution Vulnerability

Date added 2021-11-03

BOD 22-01 due date 2021-11-17

CWE CWE-1390

Ransomware Known

CISA description

Microsoft Open Management Infrastructure (OMI) within Azure VM Management Extensions contains an unspecified vulnerability allowing remote code execution.

Required action

Apply updates per vendor instructions.

Notes & references

https://nvd.nist.gov/vuln/detail/CVE-2021-38647

Where this lands in 800-53

Vulnerability data triggers these controls during assessment and continuous monitoring.

RA-5 · Vulnerability Monitoring and Scanning
SI-2 · Flaw Remediation
CM-6 · Configuration Settings
SI-7 · Software, Firmware, and Information Integrity
CM-8 · System Component Inventory

External lookups

NVD · CVE-2021-38647
CVE.org · CVE-2021-38647
CISA KEV catalog (canonical)