41 matches found
Microsoft Configuration Manager SQL Injection Vulnerability
Microsoft Configuration Manager contains an SQL injection vulnerability. An unauthenticated attacker could exploit this vulnerability by sending specially crafted requests to the target environment which are processed in an unsafe manner enabling the attacker to execute commands on the server...
CVE-2025-47179
Improper access control in Microsoft Configuration Manager allows an authorized attacker to elevate privileges locally...
CVE-2025-47179
Improper access control in Microsoft Configuration Manager allows an authorized attacker to elevate privileges locally...
EUVD-2025-93420
Improper access control in Microsoft Configuration Manager allows an authorized attacker to elevate privileges locally...
PT-2025-46451
Name of the Vulnerable Software and Affected Versions Microsoft Configuration Manager affected versions not specified Description An improper access control issue exists in Microsoft Configuration Manager. This allows an authorized attacker to elevate privileges locally. Recommendations At the...
Microsoft Configuration Manager 访问控制错误漏洞
Microsoft Configuration Manager is a Microsoft solution for managing computers and servers within an organization that helps IT departments keep software up-to-date, set configuration and security policies, and monitor system status. An elevation of privilege vulnerability exists in Microsoft...
CVE-2025-59501
Authentication bypass by spoofing in Microsoft Configuration Manager allows an authorized attacker to perform spoofing over an adjacent network...
CVE-2025-59501
Authentication bypass by spoofing in Microsoft Configuration Manager allows an authorized attacker to perform spoofing over an adjacent network...
CVE-2025-59501
Authentication bypass by spoofing in Microsoft Configuration Manager allows an authorized attacker to perform spoofing over an adjacent network...
CVE-2025-59501 Microsoft Configuration Manager Spoofing Vulnerability
...
CVE-2025-59501 Microsoft Configuration Manager Spoofing Vulnerability
...
CVE-2025-59501
CVE-2025-59501 is a confirmed spoofing/authentication-bypass vulnerability in Microsoft Configuration Manager (aka Configuration Manager/Endpoint Configuration Manager). Descriptions across Red Hat, NVD, and Microsoft-related sources indicate an attacker with adjacent access could spoof identity ...
Microsoft Configuration Manager Spoofing Vulnerability
Authentication bypass by spoofing in Microsoft Configuration Manager allows an authorized attacker to perform spoofing over an adjacent network...
PT-2025-44654
Name of the Vulnerable Software and Affected Versions Microsoft Configuration Manager affected versions not specified Description An authentication bypass through spoofing exists in Microsoft Configuration Manager. This allows an authorized attacker to perform spoofing attacks over an adjacent...
Microsoft Configuration Manager 安全漏洞
Microsoft Configuration Manager is a Microsoft solution for managing computers and servers within an organization that helps IT departments keep software up-to-date, set configuration and security policies, and monitor system status. A security vulnerability exists in Microsoft Configuration...
KLA89722 Multiple vulnerability in Microsoft System Center
Multiple vulnerability was found in Microsoft System Center. Malicious users can exploit this vulnerability to spoof user interface. Original advisories CVE-2025-59501 Related products Microsoft-Configuration-Manager CVE list CVE-2025-59501 warning Solution Install necessary updates from the KB...
CVE-2025-59213
Improper neutralization of special elements used in an sql command 'sql injection' in Microsoft Configuration Manager allows an unauthorized attacker to elevate privileges over an adjacent network...
CVE-2025-55320
Improper neutralization of special elements used in an sql command 'sql injection' in Microsoft Configuration Manager allows an authorized attacker to elevate privileges over an adjacent network...
PT-2025-42104
Name of the Vulnerable Software and Affected Versions Microsoft Configuration Manager affected versions not specified Description An issue exists in Microsoft Configuration Manager where improper neutralization of special elements in SQL commands allows an attacker to inject malicious SQL code...
Microsoft Configuration Manager SQL注入漏洞
Microsoft Configuration Manager is a Microsoft solution for managing computers and servers within an organization that helps IT departments keep software up-to-date, set configuration and security policies, and monitor system status. Microsoft Configuration Manager suffers from a SQL injection...