Infoblox’s global team of threat hunters uncovers a DNS operation with the ability to bypass traditional security measures and control the Great Firewall of China. Read about “Muddling Meerkat” and the many other threat actors discovered by Infoblox Threat Intel here.

Trending KB Articles

ThinkstockPhotos-511475207.jpg

Infoblox NIOS and BloxOne products are not vulnerable to CVE-2021-38647

samanna
Adviser
Posts: 321
samanna

Infoblox NIOS and BloxOne products are not vulnerable to CVE-2021-38647

Adviser ‎09-27-2021 10:26 AM - edited ‎12-14-2021 10:30 AM

Summary:

Sept. 23, 2021 • Infoblox NIOS VMs are not vulnerable to CVE-2021-38647.

 

Overview and Impact:

On September 14, 2021 Microsoft Corporation announced CVE-2021-38647 Security Vulnerability referring to the Open Management Infrastructure (OMI) agent tools. This tool is not able to be installed on many vendor’s virtual instances, including Infoblox NIOS VM deployments.

 

CVSS:3.0 9.8 / 8.5 

 

Affected Versions:

NIOS is not vulnerable to this exploit.

 

Impact:

Infoblox NIOS product is not affected.

 

Workaround:

No workaround needed for Infoblox NIOS product.

 

Resolution:

No action needed for Infoblox NIOS VM instances. Additional information can be found from Microsoft at the following link: CVE-2021-38647 - Security Update Guide - Microsoft - Open Management Infrastructure Remote Code Exec... If you have further questions, please contact your Microsoft Azure support team for assistance.

Labels:
0 Kudos
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Recommended Discussions

Re: Test Upgrade Failing (8.6.4 to 9.0.3)

Re: NetMRI 7.6.0 has no in-place upgrade?

Re: Trinzik 1415 EoL question

Re: When do I need Match Clients for DNS Views

Re: Trinzik 1415 EoL question