It’s important to note that Microsoft has released a patch in the OMI Agent, released on September 11, 2021. System owners can apply the patch to remediate the vulnerability. This patch is available directly from the
Microsoft OMI Agent GitHub repository under the 1.6.8-1 release.
IMPORTANT: To be sufficiently protected by the security updates provided by Microsoft for "OMIGOD" vulnerabilities, customers must take
manual action to deploy required patches. Azure OMI doesn’t apply this patch automatically.
How can Trellix product solutions help?
We evaluate product coverage across our portfolio. This article will be updated as product coverage is identified.
Product capabilities are available for the following components:
NOTE: Common OMI ports are 5986, 5985, and 1270. But, custom configurations options for OMI ports are available. Customers should investigate internally what's being used in their environment. Additionally, as further testing is done, these steps will be outlined in more detail.
Additional product coverage is being evaluated for the following products:
To receive continued updates, subscribe to this article and to Support Notification Service (SNS).