U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

Vulnerability Change Records for CVE-2021-38649

Change History

CVE Modified by CISA-ADP 6/17/2026 12:02:31 AM

Action Type Old Value New Value
Added SSVC

                  
                
              
{"timestamp":"2025-02-04T18:09:12.228704Z","id":"CVE-2021-38649","options":[{"exploitation":"active"},{"automatable":"no"},{"technicalImpact":"total"}],"role":"CISA Coordinator","version":"2.0.3"}

CVE Modified by Microsoft Corporation 6/17/2026 12:02:31 AM

Action Type Old Value New Value
Added Affected

                  
                
              
[{"vendor":"Microsoft","product":"Open Management Infrastructure","cpes":["cpe:2.3:a:microsoft:open_management_infrastructure:*:*:*:*:*:*:*:*"],"platforms":["Unknown"],"versions":[{"version":"16.0","lessThan":"OMI Version 1.6.8-1","versionType":"custom","status":"affected"}]},{"vendor":"Microsoft","product":"System Center Operations Manager (SCOM)","cpes":["cpe:2.3:a:microsoft:system_center_operations_manager:-:*:*:*:*:*:*:*"],"platforms":["Unknown"],"versions":[{"version":"1.0.0","lessThan":"OMI version: 1.6.8-1","versionType":"custom","status":"affected"}]},{"vendor":"Microsoft","product":"Azure Automation State Configuration, DSC Extension","cpes":["cpe:2.3:a:microsoft:azure_automation_state_configuration:-:*:*:*:*:*:*:*"],"platforms":["Unknown"],"versions":[{"version":"2.0.0","lessThan":"DSC Agent versions: 2.71.1.25, 2.70.0.30, 3.0.0.3","versionType":"custom","status":"affected"}]},{"vendor":"Microsoft","product":"Azure Automation Update Management","cpes":["cpe:2.3:a:microsoft:azure_automation_update_management:-:*:*:*:*:*:*:*"],"platforms":["Unknown"],"versions":[{"version":"1.0.0","lessThan":"OMS Agent for Linux GA v1.13.40-0","versionType":"custom","status":"affected"}]},{"vendor":"Microsoft","product":"Log Analytics Agent","cpes":["cpe:2.3:a:microsoft:log_analytics_agent:-:*:*:*:*:*:*:*"],"platforms":["Unknown"],"versions":[{"version":"1.0.0","lessThan":"OMS Agent for Linux GA v1.13.40-0","versionType":"custom","status":"affected"}]},{"vendor":"Microsoft","product":"Azure Diagnostics (LAD)","cpes":["cpe:2.3:a:microsoft:azure_diagnostics:*:*:*:*:*:*:*:*"],"platforms":["Unknown"],"versions":[{"version":"3.0.0","lessThan":"LAD v4.0.13 and LAD v3.0.135","versionType":"custom","status":"affected"}]},{"vendor":"Microsoft","product":"Container Monitoring Solution","cpes":["cpe:2.3:a:microsoft:container_monitoring_solution:-:*:*:*:*:*:*:*"],"platforms":["Unknown"],"versions":[{"version":"1.0.0","lessThan":"publication","versionType":"custom","status":"affected"}]},{"vendor":"Microsoft","product":"Azure Security Center","cpes":["cpe:2.3:a:microsoft:azure_security_center:*:*:*:*:*:*:*:*"],"platforms":["Unknown"],"versions":[{"version":"1.0.0","lessThan":"OMS Agent for Linux GA v1.13.40-0","versionType":"custom","status":"affected"}]},{"vendor":"Microsoft","product":"Azure Sentinel","cpes":["cpe:2.3:a:microsoft:azure_sentinel:*:*:*:*:*:*:*:*"],"platforms":["Unknown"],"versions":[{"version":"1.0.0","lessThan":"OMS Agent for Linux GA v1.13.40-0","versionType":"custom","status":"affected"}]},{"vendor":"Microsoft","product":"Azure Stack Hub","cpes":["cpe:2.3:a:microsoft:azure_stack_hub:*:*:*:*:*:*:*:*"],"platforms":["Unknown"],"versions":[{"version":"1.0.0","lessThan":"Monitor, Update and Config Mgmnt 1.14.01","versionType":"custom","status":"affected"},{"version":"1.0.0","lessThan":"3.1.135","versionType":"custom","status":"affected"}]}]