Introducing SOC Insights for BloxOne Threat Defense: Boost your SOC efficiency with AI-driven insights to eliminate manual work and accelerate investigation and response times. Read the blog announcement here.

Trending KB Articles

ThinkstockPhotos-511475207.jpg

Infoblox NIOS and BloxOne products are not vulnerable to CVE-2021-38647

samanna
Adviser
Posts: 321
samanna

Infoblox NIOS and BloxOne products are not vulnerable to CVE-2021-38647

Adviser ‎09-27-2021 10:26 AM - edited ‎12-14-2021 10:30 AM

Summary:

Sept. 23, 2021 • Infoblox NIOS VMs are not vulnerable to CVE-2021-38647.

 

Overview and Impact:

On September 14, 2021 Microsoft Corporation announced CVE-2021-38647 Security Vulnerability referring to the Open Management Infrastructure (OMI) agent tools. This tool is not able to be installed on many vendor’s virtual instances, including Infoblox NIOS VM deployments.

 

CVSS:3.0 9.8 / 8.5 

 

Affected Versions:

NIOS is not vulnerable to this exploit.

 

Impact:

Infoblox NIOS product is not affected.

 

Workaround:

No workaround needed for Infoblox NIOS product.

 

Resolution:

No action needed for Infoblox NIOS VM instances. Additional information can be found from Microsoft at the following link: CVE-2021-38647 - Security Update Guide - Microsoft - Open Management Infrastructure Remote Code Exec... If you have further questions, please contact your Microsoft Azure support team for assistance.

Labels:
0 Kudos
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Recommended Discussions

Re: NetMRI 7.6.0 has no in-place upgrade?

Re: Trinzik 1415 EoL question

Re: When do I need Match Clients for DNS Views

Re: Trinzik 1415 EoL question

Re: New ISC bind security issues for Bind 9, NIOS affected?