OMIGOD! Microsoft has fixed some critical bugs in a secretly installed Azure Linux app | Laptops-pc News
Home Laptops PC Laptops PC News OMIGOD! Microsoft has fixed some critical bugs in a secretly installed Azure Linux app

OMIGOD! Microsoft has fixed some critical bugs in a secretly installed Azure Linux app

Four critical vulnerabilities have been addressed that are collectively known as OMIGOD.

By: HT TECH
| Updated on: Sep 16 2021, 15:49 IST
Icon
These four vulnerabilities that Microsoft addressed were found by cloud security firm Wiz researchers Nir Ohfeld and Shir Tamari who named them “OMIGOD”.
These four vulnerabilities that Microsoft addressed were found by cloud security firm Wiz researchers Nir Ohfeld and Shir Tamari who named them “OMIGOD”. (Bleeping Computer )
These four vulnerabilities that Microsoft addressed were found by cloud security firm Wiz researchers Nir Ohfeld and Shir Tamari who named them “OMIGOD”.
These four vulnerabilities that Microsoft addressed were found by cloud security firm Wiz researchers Nir Ohfeld and Shir Tamari who named them “OMIGOD”. (Bleeping Computer )

Microsoft has managed to address four critical vulnerabilities that are collectively known as OMIGOD. These vulnerabilities were found in the Open Management Infrastructure (OMI) software agent that is silently installed on Azure Linus machines and accounts for more than half of Azure instances, as Bleeping Computer reported. OMI is a software service for IT management and supports most UNIX systems and modern Linux platforms. It is used by multiple Azure services including Open Management Suite (OMS), Azure Insights, Azure Automation, and others.

These four vulnerabilities that Microsoft addressed were found by cloud security firm Wiz researchers Nir Ohfeld and Shir Tamari who named them “OMIGOD”. "Problematically, this 'secret' agent is both widely used (because it is open source) and completely invisible to customers as its usage within Azure is completely undocumented," Ohfeld said.

Ohfeld and Tamari “conservatively estimate” that at least thousands of Azure customers and millions of endpoints have been impacted by these security flaws:

CVE-2021-38647 – Unauthenticated RCE as root (Severity: 9.8/10)

CVE-2021-38648 – Privilege Escalation vulnerability (Severity: 7.8/10)

CVE-2021-38645 – Privilege Escalation vulnerability (Severity: 7.8/10)

CVE-2021-38649 – Privilege Escalation vulnerability (Severity: 7.0/10)

According to reports, all Azure customers with Linux machines running one of the following tools or services are at risk:

- Azure Automation

- Azure Automatic Update

- Azure Operations Management Suite (OMS)

- Azure Log Analytics

- Azure Configuration Management

- Azure Diagnostics

"When users enable any of these popular services, OMI is silently installed on their Virtual Machine, running at the highest privileges possible," Ohfeld said adding that "this happens without customers' explicit consent or knowledge. Users simply click agree to log collection during set-up and they have unknowingly opted in."

Other Microsoft customers have also been and can be impacted by the OMIGOD flaws since the OMI agent “can also be manually installed on-premise as it is built in the System Center for Linux, which is Microsoft's server management tool”.

"This is a textbook RCE vulnerability that you would expect to see in the 90's – it's highly unusual to have one crop up in 2021 that can expose millions of endpoints," Ohfeld explained regarding the CVE-2021-38647 RCE bug.

"With a single packet, an attacker can become root on a remote machine by simply removing the authentication header. It's that simple. [T]his vulnerability can be also used by attackers to obtain initial access to a target Azure environment and then move laterally within it,” Ohfeld said.

Catch all the Latest Tech News, Mobile News, Laptop News, Gaming news, Wearables News , How To News, also keep up with us on Whatsapp channel,Twitter, Facebook, Google News, and Instagram. For our latest videos, subscribe to our YouTube channel.

First Published Date: 16 Sep, 15:49 IST
Trending: 10 best laptop under 60000: lenovo vs asus dell xps 14, xps 16, alienware m16 r2 and inspiron 14 plus launched in india with ai features- all the details india ‘bans’ china-made laptops: govt has this update to share wings nuvobook pro review: quite a reliable laptop for everyday needs - private or professional logitech unveils signature slim combo with easy device switching feature hp pavilion x360 (2023) review: versatile, but leaves you wanting more best laptops for programming: from asus, hp to dell: check out the 10 ultimate code companions macbook air m1 gets huge discount on flipkart: this may be the best time to buy the apple laptop 8 best display laptops: from asus, lenovo to acer, check out these gadgets with dazzling screens best business laptops under rs. 80000: check top options from apple, hp, asus and more
NEXT ARTICLE BEGINS

Tips & Tricks

WhatsApp banned
WhatsApp banned my number. What’s the solution? Step-by-step guide to ‘unban’ your account
Consider Tonnage
Don't forget these 5 things while buying ACs online
Productivity
Otter AI: How to use this AI meeting assistant app to automatically take notes, transcripts, more
Pixel 8 Pro's Pro
Know how to master Pro Controls on the Google Pixel 8 Pro - check top 4 tips
ChatGPT Plus
How to edit images generated by DALL-E in ChatGPT: Step-by-step guide

Editor’s Pick

Digi Yatra
Digi Yatra users, delete the old app right now- Here’s how to download the new app and use it at airports
iPhone 15
iPhone 16 leaks summarised: Colours, A-series chip and what more to expect from Apple in 2024
STScI-01HFQ5YXZ04PF608HQB0KRTF3S
10 stellar images shot by NASA’s $10 billion James Webb Space Telescope
HDFC Bank alerts about a few common ‘bad habits’ of smartphone users that make it easy for them to fall prey to hacking attempts and scams.
Online scams: 5 habits of smartphone users that make life easy for hackers, warns HDFC Bank
Moto Edge 50 Pro
Motorola Edge 50 Pro review: Should you buy this new AI smartphone under 35,000?

Trending Stories

Dbrand
MKBHD takes tough stand after Dbrand makes racist comment on Indian customer [Update]
GTA_6
GTA 6 leaks: What we know so far about Grand Theft Auto 6
STScI-01HFQ5YXZ04PF608HQB0KRTF3S
10 stellar images shot by NASA’s $10 billion James Webb Space Telescope
Google Vids
Google Vids- All details about this new AI video app and how to use it
iPhone 13
Apple iPhone 13 available at discounted price of Rs. 52,990 on Amazon- Check details
keep up with tech

Gaming

GTA 6: From main protagonists to supporting figures, all the key characters in Grand Theft Auto 6
GTA 6: From main protagonists to supporting figures, all the key characters in Grand Theft Auto 6
Garena Free Fire MAX Redeem Codes for April 19
Garena Free Fire MAX Redeem Codes for April 19: SCAR Ring event bring menacing weapon skins!
Garena Free Fire Redeem Codes for April 19
Garena Free Fire Redeem Codes for April 19: OB44 update rolled out, know what’s new
GTA 6 trailer: Top 5 iconic cars spotted in the Grand Theft Auto 6’s Vice City
GTA 6: Top 5 iconic cars spotted in the trailer set to dominate vice city's streets
Garena Free Fire MAX redeem codes for April 18
Garena Free Fire MAX Redeem Codes for April 18: OB44 update brings exciting changes!

    Trending News

    MKBHD takes tough stand after Dbrand makes racist comment on Indian customer [Update]
    Dbrand
    GTA 6 leaks: What we know so far about Grand Theft Auto 6
    GTA_6
    10 stellar images shot by NASA’s $10 billion James Webb Space Telescope
    STScI-01HFQ5YXZ04PF608HQB0KRTF3S
    Google Vids- All details about this new AI video app and how to use it
    Google Vids
    Apple iPhone 13 available at discounted price of Rs. 52,990 on Amazon- Check details
    iPhone 13

    Trending Gadgets

    Mobiles Laptops Tablets