CVE-2025-59213

Publication date

2025-10-14 17:01:35

Family

microsoft

State

PUBLISHED

Description

Improper neutralization of special elements used in an sql command (sql injection) in Microsoft Configuration Manager allows an unauthorized attacker to elevate privileges locally.