CVE-2025-55320
published 2025-10-14CVE-2025-55320: Improper neutralization of special elements used in an sql command ('sql injection') in Microsoft Configuration Manager allows an authorized attacker to…
PriorityP339medium6.8CVSS 3.1
AVAACLPRHUINSUCHIHAH
EPSS
0.62%
45.3th percentile
Improper neutralization of special elements used in an sql command ('sql injection') in Microsoft Configuration Manager allows an authorized attacker to elevate privileges over an adjacent network.
Affected
8 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microsoft | configuration_manager_2403 | < 5.00.9128.1035 | 5.00.9128.1035 |
| microsoft | configuration_manager_2409 | < 5.00.9132.1029 | 5.00.9132.1029 |
| microsoft | configuration_manager_2503 | < 5.00.9135.1008 | 5.00.9135.1008 |
| microsoft | microsoft_configuration_manager | >= 1.0.0 < 5.00.9135.1008 | 5.00.9135.1008 |
| microsoft | microsoft_configuration_manager_2409 | >= 1.0.0 < 5.00.9132.1029 | 5.00.9132.1029 |
| msrc | microsoft_configuration_manager_2403 | — | — |
| msrc | microsoft_configuration_manager_2409 | — | — |
| msrc | microsoft_configuration_manager_2503 | — | — |
CVSS provenance
nvdv3.16.8MEDIUMCVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
vendor_msrc6.8MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Microsoft
Configuration Manager Elevation of Privilege Vulnerability
vendor_msrc·2025-10-14·CVSS 6.8
CVE-2025-55320 [MEDIUM] CWE-89 Configuration Manager Elevation of Privilege Vulnerability
Configuration Manager Elevation of Privilege Vulnerability
Description: Improper neutralization of special elements used in an sql command ('sql injection') in Microsoft Configuration Manager allows an authorized attacker to elevate privileges over an adjacent network.
FAQ: What privileges could be gained by an attacker who successfully exploited the vulnerability?
An attacker who successfully exploited this vulnerability could gain sysadmin privileges.
FAQ: How could an attacker exploit this vulnerability?
An attacker could exploit this vulnerability by injecting malicious SQL into the SyncToken method, allowing execution of arbitrary queries as the SMS service.
FAQ: According to the CVSS score, the attack vector is adjacent (AV:A). What does this mean for this vulnerability?
This att
GHSA
GHSA-5pj4-xx5h-fm6m: Improper neutralization of special elements used in an sql command ('sql injection') in Microsoft Configuration Manager allows an authorized attacker
ghsa_unreviewed·2025-10-14
CVE-2025-55320 [MEDIUM] CWE-89 GHSA-5pj4-xx5h-fm6m: Improper neutralization of special elements used in an sql command ('sql injection') in Microsoft Configuration Manager allows an authorized attacker
Improper neutralization of special elements used in an sql command ('sql injection') in Microsoft Configuration Manager allows an authorized attacker to elevate privileges locally.
No detection rules found.
No public exploits indexed.
2025-10-14
Published