High severity8.0NVD Advisory· Published Jul 8, 2025· Updated Jun 17, 2026
CVE-2025-47178
CVE-2025-47178
Description
Improper neutralization of special elements used in an sql command ('sql injection') in Microsoft Configuration Manager allows an authorized attacker to execute code over an adjacent network.
Affected products
2- Range: 1.0.0
Patches
Vulnerability mechanics
References
1- msrc.microsoft.com/update-guide/vulnerability/CVE-2025-47178nvdVendor Advisory
News mentions
0No linked articles in our index yet.