Microsoft Configuration Manager
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Microsoft Configuration Manager.
Recent Microsoft Configuration Manager Security Advisories
| Advisory | Title | Published |
|---|---|---|
| CVE-2025-47179 | CVE-2025-47179 Configuration Manager Elevation of Privilege Vulnerability | November 11, 2025 |
| CVE-2025-59213 | CVE-2025-59213 Configuration Manager Elevation of Privilege Vulnerability | October 14, 2025 |
| CVE-2025-55320 | CVE-2025-55320 Configuration Manager Elevation of Privilege Vulnerability | October 14, 2025 |
| CVE-2025-47178 | CVE-2025-47178 Microsoft Configuration Manager Remote Code Execution Vulnerability | July 8, 2025 |
| CVE-2024-43468 | CVE-2024-43468 Microsoft Configuration Manager Remote Code Execution Vulnerability | October 8, 2024 |
| CVE-2022-37972 | Microsoft Endpoint Configuration Manager Spoofing Vulnerability | September 20, 2022 |
| CVE-2022-24527 | Windows Endpoint Configuration Manager Elevation of Privilege Vulnerability | April 12, 2022 |
By the Year
In 2026 there have been 0 vulnerabilities in Microsoft Configuration Manager. Last year, in 2025 Configuration Manager had 2 security vulnerabilities published. Right now, Configuration Manager is on track to have less security vulnerabilities in 2026 than it did last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 2 | 5.75 |
| 2024 | 1 | 9.80 |
It may take a day or so for new Configuration Manager vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Microsoft Configuration Manager Security Vulnerabilities
Nov 2025: Configuration Manager Elevation of Privilege Vulnerability
CVE-2025-47179
6.7 - Medium
- November 11, 2025
Improper access control in Microsoft Configuration Manager allows an authorized attacker to elevate privileges locally.
Authorization
Oct 2025: Microsoft Configuration Manager Spoofing Vulnerability
CVE-2025-59501
4.8 - Medium
- October 31, 2025
Authentication bypass by spoofing in Microsoft Configuration Manager allows an authorized attacker to perform spoofing over an adjacent network.
Authentication Bypass by Spoofing
Oct 2024: Microsoft Configuration Manager Remote Code Execution Vulnerability
CVE-2024-43468
9.8 - Critical
- October 08, 2024
Microsoft Configuration Manager Remote Code Execution Vulnerability
SQL Injection
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Microsoft Configuration Manager or by Microsoft? Click the Watch button to subscribe.
