@kalimer0x00.bsky.social
Reposted
Our ninja @kalimer0x00.bsky.social is now on stage at #x33fcon to talk about his journey from dissecting SCCM until the discovery of the critical CVE-2024-43468 and the post-exploitation opportunities🔥
June 13, 2025 at 2:46 PM
Our ninja @kalimer0x00.bsky.social is now on stage at #x33fcon to talk about his journey from dissecting SCCM until the discovery of the critical CVE-2024-43468 and the post-exploitation opportunities🔥
Reposted
A few months ago, Microsoft released a critical patch for CVE-2024-43468, an unauthenticated SQL injection vulnerability in SCCM/ConfigMgr leading to remote code execution, discovered by @kalimer0x00.bsky.social.
www.synacktiv.com/advisories/m...
www.synacktiv.com/advisories/m...
Microsoft Configuration Manager (ConfigMgr) 2403 Unauthenticated SQL injections
Microsoft Configuration Manager (ConfigMgr) 2403 Unauthenticated SQL injections
www.synacktiv.com
January 16, 2025 at 1:25 PM
A few months ago, Microsoft released a critical patch for CVE-2024-43468, an unauthenticated SQL injection vulnerability in SCCM/ConfigMgr leading to remote code execution, discovered by @kalimer0x00.bsky.social.
www.synacktiv.com/advisories/m...
www.synacktiv.com/advisories/m...