CVE-2024-43468
CRITICAL KEVMicrosoft Configuration Manager 2403 - SQL Injection
Title source: ruleDescription
Microsoft Configuration Manager Remote Code Execution Vulnerability
Exploits (3)
nomisec
WORKING POC
3 stars
by nikallass · remote
https://github.com/nikallass/CVE-2024-43468_mTLS_go
github
SCANNER
by tadash10 · pythonpoc
https://github.com/tadash10/Detailed-Analysis-and-Mitigation-Strategies-for-CVE-2024-38124-and-CVE-2024-43468
Scores
CVSS v3
9.8
EPSS
0.8333
EPSS Percentile
99.3%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CISA KEV
2026-02-12
VulnCheck KEV
2026-02-12
ENISA EUVD
EUVD-2024-40737
CWE
CWE-89
Status
published
Products (3)
microsoft/configuration_manager_2403
microsoft/configuration_manager_2409
microsoft/configuration_manager_2503
Published
Oct 08, 2024
KEV Added
Feb 12, 2026
Tracked Since
Feb 18, 2026