CVE-2025-55320 Configuration Manager Elevation of Privilege Vulnerability

07:00 - 14 Oct 2025

msrc.microsoft.com

Improper neutralization of special elements used in an sql command ('sql injection') in Microsoft Configuration Manager allows an authorized attacker to elevate privileges locally.

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55320

Article info:

Full Article URL: https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55320
Textarea URL (this page):
https://textarea.nl/i/eNrLKCkpKLbS188tLkrWy81MLsovzk8r0UvOz9UvLUhJLEnVTS_NTEnVLyvNyUstSkzKzMksqdR3DnPVNTIwMtU1NTU2MgAAcVgXxw==_2025-10-14
Source: https://api.msrc.microsoft.com/update-guide/rss
Microsoft Security: https://msrc.microsoft.com/update-guide/vulnerability
Publication date: 2025-10-14 07:00:00
Last retrieval: 2025-10-15 06:45:28.342189