Back

CISA Issues Warning on SQL Injection Vulnerability in Microsoft Configuration Manager

Severity: High (Score: 71.8)

Sources: Cybersecuritynews, Bleepingcomputer, Windowsreport, Cyberpress, Gbhackers

Summary

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning regarding a critical SQL injection vulnerability in Microsoft Configuration Manager that is currently being actively exploited. Organizations using this software are urged to take immediate action to mitigate the risk associated with this vulnerability.

Key Entities

  • Sql Injection (attack_type)
  • Synacktiv (company)
  • CVE-2024-43468 (cve)
  • Government (industry)
  • T1190 - Exploit Public-Facing Application (mitre_attack)
  • Microsoft Configuration Manager (platform)
  • Windows (platform)
Loading threat details...

Threat Not Found

The threat cluster you're looking for doesn't exist or has been removed.

Return to Feed