CNNVD-202510-3295 Information
CNNVD ID
CNNVD-202510-3295
Related CVE
- CNNVD Published: 2025-10-24
Description (Chinese)
Microsoft Configuration Manager是美国微软(Microsoft)公司的一套用于管理企业内部电脑和服务器的解决方案,它可以帮助IT部门保持软件更新、设置配置和安全策略,并监控系统状态。 Microsoft Configuration Manager存在安全漏洞,该漏洞源于未对通信方身份进行充分校验,攻击者可能通过伪造身份绕过登录验证。
Description (English)
Microsoft Construction Manager is a United States Microsoft company solution for managing in-house computers and servers that helps the IT sector maintain software upgrades, configurations and security strategies, and monitors system status. Microsoft Configuration Manager had a security loophole, which stemmed from a failure to adequately verify the identity of the party that communicated, and the attackers might have bypassed the login by falsifying identity.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
微软
Published
2025-10-24
Last Modified
2026-02-24
References
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59501
Patch
https://learn.microsoft.com/en-us/intune/configmgr/core/understand/introduction
Share on: