CVE-2025-59501: Microsoft Configuration Manager Spoofing Vulnerability

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2025-59501

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

Microsoft Configuration Manager Spoofing Vulnerability

Source: NVD (National Vulnerability Database)

Vulnerability Description

Authentication bypass by spoofing in Microsoft Configuration Manager allows an authorized attacker to perform spoofing over an adjacent network.

Source: NVD (National Vulnerability Database)

CVSS Information

CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N

Source: NVD (National Vulnerability Database)

Vulnerability Type

使用欺骗进行的认证绕过

Source: NVD (National Vulnerability Database)

Vulnerability Title

Microsoft Configuration Manager 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Microsoft Configuration Manager是美国微软（Microsoft）公司的一套用于管理企业内部电脑和服务器的解决方案，它可以帮助IT部门保持软件更新、设置配置和安全策略，并监控系统状态。 Microsoft Configuration Manager存在安全漏洞，该漏洞源于未对通信方身份进行充分校验，攻击者可能通过伪造身份绕过登录验证。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
Microsoft	Microsoft Configuration Manager	1.0.0 ~ 5.00.9128.1037	-
Microsoft	Microsoft Configuration Manager 2409	1.0.0 ~ 5.00.9132.1031	-

II. Public POCs for CVE-2025-59501

#	POC Description	Source Link	Shenlong Link
1	CVE-2025-59501 POC code	https://github.com/garrettfoster13/CVE-2025-59501	POC Details

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2025-59501

Please Login to view more intelligence information

https://nvd.nist.gov/vuln/detail/CVE-2025-59501

IV. Related Vulnerabilities

Same product: Microsoft Configuration Manager

Same vendor: Microsoft

Same weakness: CWE-290

V. Comments for CVE-2025-59501

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

I. Basic Information for CVE-2025-59501

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2025-59501

III. Intelligence Information for CVE-2025-59501

IV. Related Vulnerabilities

V. Comments for CVE-2025-59501

Leave a comment