Skip to main content

Microsoft Configuration Manager

1 CVEs product

Monthly

CVE-2026-47301 HIGH PATCH This Week

Privilege escalation in Microsoft Configuration Manager (versions 2509 and 2603) lets an already-authorized, low-privileged network user gain elevated privileges due to improper access control. Rated CVSS 8.8, the flaw yields full confidentiality, integrity, and availability impact and is remotely reachable, though it requires existing valid low-level access. Microsoft has released a patch; no public exploit identified at time of analysis.

Authentication Bypass Microsoft Microsoft Configuration Manager Microsoft Configuration Manager 2509 Microsoft Configuration Manager 2603
NVD
CVSS 3.1
8.8
EPSS
0.5%
EPSS 1% CVSS 8.8
HIGH PATCH This Week

Privilege escalation in Microsoft Configuration Manager (versions 2509 and 2603) lets an already-authorized, low-privileged network user gain elevated privileges due to improper access control. Rated CVSS 8.8, the flaw yields full confidentiality, integrity, and availability impact and is remotely reachable, though it requires existing valid low-level access. Microsoft has released a patch; no public exploit identified at time of analysis.

Authentication Bypass Microsoft Microsoft Configuration Manager +2
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy