VYPR
High severity8.0NVD Advisory· Published Jul 8, 2025· Updated Jun 17, 2026

CVE-2025-47178

CVE-2025-47178

Description

Improper neutralization of special elements used in an sql command ('sql injection') in Microsoft Configuration Manager allows an authorized attacker to execute code over an adjacent network.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.