Configuration Manager 2503

2 CVEs product

Monthly

Sort: Newest CVSS Score EPSS Score Oldest
CVE-2025-47179 MEDIUM This Month

Improper access control in Microsoft Configuration Manager allows an authorized attacker to elevate privileges locally. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Microsoft Authentication Bypass Configuration Manager 2403 Configuration Manager 2409 Configuration Manager 2503
NVD
CVSS 3.1
6.7
EPSS
0.1%
CVE-2025-47178 HIGH This Week

Improper neutralization of special elements used in an sql command ('sql injection') in Microsoft Configuration Manager allows an authorized attacker to execute code over an adjacent network.

Microsoft SQLi Configuration Manager 2503
NVD
CVSS 3.1
8.0
EPSS
0.2%
CVE-2025-47179
EPSS 0% CVSS 6.7
MEDIUM This Month

Improper access control in Microsoft Configuration Manager allows an authorized attacker to elevate privileges locally. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Microsoft Authentication Bypass Configuration Manager 2403 +2
NVD
CVE-2025-47178
EPSS 0% CVSS 8.0
HIGH This Week

Improper neutralization of special elements used in an sql command ('sql injection') in Microsoft Configuration Manager allows an authorized attacker to execute code over an adjacent network.

Microsoft SQLi Configuration Manager 2503
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy