2025-10-14 17:00:12
microsoft
PUBLISHED
Improper neutralization of special elements used in an sql command (sql injection) in Microsoft Configuration Manager allows an authorized attacker to elevate privileges over an adjacent network.