The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a critical SQL injection vulnerability in Microsoft Configuration Manager to its Known Exploited Vulnerabilities (KEV) catalog, signaling active exploitation by threat actors in the wild. This unauthenticated flaw poses immediate risks to organizations relying on the enterprise management platform for large-scale IT infrastructure oversight. Tracked […] The post CISA Warns of Actively Exploited SQL Injection Flaw in Microsoft Configuration Manager appeared first on Cyber Security News.