CVE-2025-59501

Name of the Vulnerable Software and Affected Versions Microsoft Configuration Manager (affected versions not specified)

Description An authentication bypass through spoofing exists in Microsoft Configuration Manager. This allows an authorized attacker to perform spoofing attacks over an adjacent network. The issue involves the AdminService API, specifically when Entra ID integration is enabled, potentially leading to elevation to Full Administrator and takeover of an SCCM hierarchy. The AdminService uses Entra tokens without verifying the User Principal Name (UPN) exists in Active Directory, allowing an attacker with a crafted synced UPN to impersonate the site server.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.