Skip to main content

CVE-2021-38647

Description

Open Management Infrastructure Remote Code Execution Vulnerability

Microsoft Corporation
Severity: CRITICAL
CVE ID: CVE-2021-38647
CVSS Score: 9.8
CVSS Metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Refrence: NVDMITRE

Proof Of Concept

Nuclei Templates for CVE-2021-38647
corelight

CVE-2021-38647 AKA "OMIGOD" vulnerability in Windows OMI

Refrence: GitHub

midoxnet

CVE-2021-38647 POC for RCE

Refrence: GitHub

horizon3ai

Proof on Concept Exploit for CVE-2021-38647 (OMIGOD)

Refrence: GitHub

Immersive-Labs-Sec

A PoC exploit for CVE-2021-38647 RCE in OMI

Refrence: GitHub

marcosimioni

OMIGOD! OM I GOOD? A free scanner to detect VMs vulnerable to one of the "OMIGOD" vulnerabilities discovered by Wiz's threat research team, specifically CVE-2021-38647.

Refrence: GitHub

craig-m-unsw

A Vagrant VM test lab to learn about CVE-2021-38647 in the Open Management Infrastructure agent (aka "omigod").

Refrence: GitHub

SimenBai

OMIGod / CVE-2021-38647 POC and Demo environment

Refrence: GitHub

AlteredSecurity

CVE-2021-38647 - POC to exploit unauthenticated RCE #OMIGOD

Refrence: GitHub

m1thryn

OMIGOD PoC

Refrence: GitHub

abousteif
Vulnmachines

CVE-2021-38647 is an unauthenticated RCE vulnerability effecting the OMI agent as root.

Refrence: GitHub

goofsec

Quick and dirty CVE-2021-38647 (Omigod) exploit written in Go.

Refrence: GitHub

corelight

Refrence: GitHub

Last updated on by Vulnerability_bot_v1.3.9