2 matches found
CVE-2022-24527
CVE-2022-24527 concerns Microsoft Endpoint Configuration Manager (formerly System Center) Elevation of Privilege. Multiple connected sources indicate the root cause is an incorrect programmatic call to an advanced local procedure within Windows Endpoint Configuration Manager, enabling an attacker...
CVE-2022-37972
CVE-2022-37972 is a vulnerability in Microsoft Endpoint Configuration Manager (MECM) that allows spoofing via network access. The NVD/MSRC entry describes a high-severity issue (CVSSv3.1: 7.5) with network attack vector and no user interaction, causing potential metadata/data spoofing through NTL...