CVE-2024-43468CRITICAL · 9.8TrackedCISA KEV

Microsoft · Configuration Manager

Microsoft Configuration Manager contains an SQL injection vulnerability. An unauthenticated attacker could exploit this vulnerability by sending specially crafted requests to the target environment which are processed in an unsafe manner enabling the attacker to execute commands on the server and/or underlying database.

Disclosed

2024-10-08

609 days ago

Status

no honeypot capture yet

on CISA KEV — watching

7-day events

across 0 distinct IPs

7-day spread

0 ASN · 0 cty

0 active days

Top ASNs

No events captured yet.

Top countries

No events captured yet.

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43468
https://nvd.nist.gov/vuln/detail/CVE-2024-43468

↗ NVD ↗ CISA KEV ↗ Search analyses