CVEDB API

Improper access control in Microsoft Configuration Manager allows an authorized attacker to elevate privileges locally.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 21.1%

CVSS Severity

CVSS v3 Score 6.7

References

Products affected by CVE-2025-47179

Microsoft » Configuration Manager 2403 » Version: 5.00.9128.1035

cpe:2.3:a:microsoft:configuration_manager_2403:5.00.9128.1035
Microsoft » Configuration Manager 2409 » Version: 5.00.9132.1029

cpe:2.3:a:microsoft:configuration_manager_2409:5.00.9132.1029
Microsoft » Configuration Manager 2503 » Version: N/A

cpe:2.3:a:microsoft:configuration_manager_2503:-
Microsoft » Configuration Manager 2503 » Version: 5.00.9135.1003

cpe:2.3:a:microsoft:configuration_manager_2503:5.00.9135.1003
Microsoft » Configuration Manager 2503 » Version: 5.00.9135.1008

cpe:2.3:a:microsoft:configuration_manager_2503:5.00.9135.1008