📦 Configuration Manager 2503

CVE-2024-43468 is a critical SQL injection vulnerability in Microsoft Configuration Manager that allows remote attackers to execute arbitrary code on affected systems. This affects organizations using...

This SQL injection vulnerability in Microsoft Configuration Manager allows unauthorized attackers on adjacent networks to execute arbitrary SQL commands, potentially leading to privilege escalation. I...

CVE-2025-47179 is an improper access control vulnerability in Microsoft Configuration Manager that allows authenticated attackers to elevate privileges locally. This affects organizations using Micros...

This vulnerability allows an authenticated attacker on an adjacent network to spoof their identity in Microsoft Configuration Manager, potentially bypassing authentication controls. It affects organiz...