cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-37323,https://securityvulnerability.io/vulnerability/CVE-2024-37323,SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability,"The vulnerability presents a significant risk due to improper handling of requests within the SQL Server Native Client OLE DB Provider. Attackers can exploit this weakness to execute arbitrary code on affected systems, which could lead to unauthorized access and control over sensitive databases. It is crucial for organizations using these products to apply the necessary patches and updates as outlined in Microsoft's vendor advisory to mitigate potential threats associated with this vulnerability.",Microsoft,"Microsoft Sql Server 2017 (gdr),Microsoft Sql Server 2019 (gdr),Microsoft Sql Server 2016 Service Pack 3 (gdr),Microsoft Sql Server 2016 Service Pack 3 Azure Connect Feature Pack,Microsoft Sql Server 2017 (cu 31),Microsoft Sql Server 2022 (gdr),Microsoft Sql Server 2019 For X64-based Systems (cu 27),Microsoft Sql Server 2022 For (cu 13)",8.8,HIGH,0.0005300000193528831,false,false,false,false,,false,false,2024-07-09T17:15:00.000Z,0
CVE-2024-37336,https://securityvulnerability.io/vulnerability/CVE-2024-37336,SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability,"The SQL Server Native Client OLE DB Provider is susceptible to a remote code execution vulnerability that could allow an attacker to execute arbitrary code on the affected system. This vulnerability can be exploited via specially crafted input, which can manipulate the execution flow of the application. Appropriate measures and patches should be applied promptly to mitigate the risks associated with this vulnerability.",Microsoft,"Microsoft Sql Server 2017 (gdr),Microsoft Sql Server 2019 (gdr),Microsoft Sql Server 2016 Service Pack 3 (gdr),Microsoft Sql Server 2016 Service Pack 3 Azure Connect Feature Pack,Microsoft Sql Server 2017 (cu 31),Microsoft Sql Server 2022 (gdr),Microsoft Sql Server 2022 For (cu 13),Microsoft Sql Server 2019 For X64-based Systems (cu 27)",8.8,HIGH,0.0005300000193528831,false,false,false,false,,false,false,2024-07-09T17:15:00.000Z,0
CVE-2024-37319,https://securityvulnerability.io/vulnerability/CVE-2024-37319,SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability,"The SQL Server Native Client OLE DB Provider faces a vulnerability that could allow an attacker to execute arbitrary code on the affected system. This occurs when the OLE DB provider processes a specially crafted request. Successful exploitation of this vulnerability can lead to unauthorized access, data manipulation, and compromise of sensitive information. Organizations using SQL Server Native Client OLE DB Provider are advised to implement appropriate security measures and monitor their systems closely. Mitigation strategies and updates can be found through the Microsoft Security Response Center.",Microsoft,"Microsoft Sql Server 2017 (gdr),Microsoft Sql Server 2019 (gdr),Microsoft Sql Server 2016 Service Pack 3 (gdr),Microsoft Sql Server 2016 Service Pack 3 Azure Connect Feature Pack,Microsoft Sql Server 2017 (cu 31),Microsoft Sql Server 2022 (gdr),Microsoft Sql Server 2022 For (cu 13),Microsoft Sql Server 2019 For X64-based Systems (cu 27)",8.8,HIGH,0.0005300000193528831,false,false,false,false,,false,false,2024-07-09T17:15:00.000Z,0
CVE-2024-37324,https://securityvulnerability.io/vulnerability/CVE-2024-37324,SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability,"The SQL Server Native Client OLE DB Provider has a vulnerability that could allow an attacker to execute arbitrary code on the host machine. This remote code execution flaw may result in unauthorized access and control over affected systems, enabling cyber threats that could compromise data integrity and confidentiality. Organizations using SQL Server and OLE DB technology should take immediate steps to assess their systems and apply any relevant security patches to mitigate potential risks. The vulnerability underscores the importance of proactive cybersecurity measures in safeguarding enterprise environments.",Microsoft,"Microsoft Sql Server 2022 For (cu 13),Microsoft Sql Server 2019 For X64-based Systems (cu 27),Microsoft Sql Server 2017 (gdr),Microsoft Sql Server 2019 (gdr),Microsoft Sql Server 2016 Service Pack 3 (gdr),Microsoft Sql Server 2016 Service Pack 3 Azure Connect Feature Pack,Microsoft Sql Server 2017 (cu 31),Microsoft Sql Server 2022 (gdr)",8.8,HIGH,0.0005300000193528831,false,false,false,false,,false,false,2024-07-09T17:15:00.000Z,0
CVE-2024-37330,https://securityvulnerability.io/vulnerability/CVE-2024-37330,SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability,"The SQL Server Native Client OLE DB Provider is susceptible to a remote code execution vulnerability that could allow an attacker to execute arbitrary code on the affected system. This security flaw can be exploited remotely, enabling unauthorized access to sensitive data or disruption of services. It is crucial for users of the SQL Server Native Client OLE DB Provider to apply necessary updates and mitigations to protect against potential exploits leveraging this vulnerability.",Microsoft,"Microsoft Sql Server 2017 (gdr),Microsoft Sql Server 2019 (gdr),Microsoft Sql Server 2016 Service Pack 3 (gdr),Microsoft Sql Server 2016 Service Pack 3 Azure Connect Feature Pack,Microsoft Sql Server 2017 (cu 31),Microsoft Sql Server 2022 (gdr),Microsoft Sql Server 2019 For X64-based Systems (cu 27),Microsoft Sql Server 2022 For (cu 13)",8.8,HIGH,0.0005300000193528831,false,false,false,false,,false,false,2024-07-09T17:15:00.000Z,0
CVE-2024-38087,https://securityvulnerability.io/vulnerability/CVE-2024-38087,SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability,"A remote code execution vulnerability exists in the SQL Server Native Client OLE DB Provider when it improperly processes specially crafted input. An attacker who successfully exploits this vulnerability could execute arbitrary code on the affected system. This could lead to unauthorized actions or access, depending on the context in which the OLE DB Provider operates. Appropriate security measures should be taken to mitigate potential risks associated with this vulnerability.",Microsoft,"Microsoft Sql Server 2017 (gdr),Microsoft Sql Server 2019 (gdr),Microsoft Sql Server 2016 Service Pack 3 (gdr),Microsoft Sql Server 2016 Service Pack 3 Azure Connect Feature Pack,Microsoft Sql Server 2017 (cu 31),Microsoft Sql Server 2022 (gdr),Microsoft Sql Server 2019 For X64-based Systems (cu 27),Microsoft Sql Server 2022 For (cu 13)",8.8,HIGH,0.0005300000193528831,false,false,false,false,,false,false,2024-07-09T17:15:00.000Z,0
CVE-2024-38088,https://securityvulnerability.io/vulnerability/CVE-2024-38088,SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability,"The SQL Server Native Client OLE DB Provider is affected by a vulnerability that allows for remote code execution, potentially enabling an attacker to gain control over the affected system. This type of vulnerability exploits improper input validation within the software, which could lead to unexpected behavior. Users of the SQL Server Native Client should apply the necessary patches and updates provided by Microsoft to secure their environments against potential exploitation. For additional details and mitigation strategies, refer to the official advisory.",Microsoft,"Microsoft Sql Server 2017 (gdr),Microsoft Sql Server 2019 (gdr),Microsoft Sql Server 2016 Service Pack 3 (gdr),Microsoft Sql Server 2016 Service Pack 3 Azure Connect Feature Pack,Microsoft Sql Server 2017 (cu 31),Microsoft Sql Server 2022 (gdr),Microsoft Sql Server 2022 For (cu 13),Microsoft Sql Server 2019 For X64-based Systems (cu 27)",8.8,HIGH,0.0005300000193528831,false,false,false,false,,false,false,2024-07-09T17:15:00.000Z,0
CVE-2024-37320,https://securityvulnerability.io/vulnerability/CVE-2024-37320,SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability,"A vulnerability exists in the SQL Server Native Client OLE DB Provider that allows remote attackers to execute arbitrary code. An attacker exploiting this vulnerability could take control of the affected system, potentially compromising sensitive data and disrupting services. It is crucial for users and organizations utilizing this product to apply necessary patches and updates to mitigate the risks associated with this vulnerability.",Microsoft,"Microsoft Sql Server 2017 (gdr),Microsoft Sql Server 2019 (gdr),Microsoft Sql Server 2016 Service Pack 3 (gdr),Microsoft Sql Server 2016 Service Pack 3 Azure Connect Feature Pack,Microsoft Sql Server 2017 (cu 31),Microsoft Sql Server 2022 (gdr),Microsoft Sql Server 2022 For (cu 13),Microsoft Sql Server 2019 For X64-based Systems (cu 27)",8.8,HIGH,0.0005300000193528831,false,false,false,false,,false,false,2024-07-09T17:15:00.000Z,0
CVE-2024-37321,https://securityvulnerability.io/vulnerability/CVE-2024-37321,SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability,"The SQL Server Native Client OLE DB Provider is subject to a vulnerability that allows a remote attacker to execute arbitrary code on the target machine. This occurs due to improper validation of input data in the OLE DB Provider component. An attacker could exploit this vulnerability by sending specially crafted requests to the affected system. Successful exploitation may lead to unauthorized actions being performed on the system, potentially compromising sensitive data and system integrity. It is crucial for users and administrators to apply the necessary security updates promptly to mitigate potential risks associated with this vulnerability.",Microsoft,"Microsoft Sql Server 2017 (gdr),Microsoft Sql Server 2019 (gdr),Microsoft Sql Server 2016 Service Pack 3 (gdr),Microsoft Sql Server 2016 Service Pack 3 Azure Connect Feature Pack,Microsoft Sql Server 2017 (cu 31),Microsoft Sql Server 2022 (gdr),Microsoft Sql Server 2022 For (cu 13),Microsoft Sql Server 2019 For X64-based Systems (cu 27)",8.8,HIGH,0.0005300000193528831,false,false,false,false,,false,false,2024-07-09T17:15:00.000Z,0
CVE-2024-37322,https://securityvulnerability.io/vulnerability/CVE-2024-37322,SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability,"An inherent remote code execution vulnerability exists within the SQL Server Native Client OLE DB Provider. This issue could allow an attacker to execute arbitrary code on the target system when a vulnerable OLE DB Provider processes crafted SQL commands. Exploiting this vulnerability could lead to unauthorized access, data compromise, and significant security risks for affected systems. Users of the SQL Server Native Client OLE DB Provider are advised to implement necessary security measures and updates to mitigate potential threats.",Microsoft,"Microsoft Sql Server 2017 (gdr),Microsoft Sql Server 2019 (gdr),Microsoft Sql Server 2016 Service Pack 3 (gdr),Microsoft Sql Server 2016 Service Pack 3 Azure Connect Feature Pack,Microsoft Sql Server 2017 (cu 31),Microsoft Sql Server 2022 (gdr),Microsoft Sql Server 2022 For (cu 13),Microsoft Sql Server 2019 For X64-based Systems (cu 27)",8.8,HIGH,0.0005300000193528831,false,false,false,false,,false,false,2024-07-09T17:15:00.000Z,0
CVE-2024-20701,https://securityvulnerability.io/vulnerability/CVE-2024-20701,SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability,"A vulnerability has been identified in the SQL Server Native Client OLE DB Provider that allows for remote code execution. This flaw may allow an attacker to execute arbitrary code on the affected system, potentially compromising sensitive data and leading to unauthorized access. Users of the SQL Server Native Client OLE DB Provider are advised to apply the necessary patches and follow best security practices to mitigate potential risks.",Microsoft,"Microsoft Sql Server 2017 (gdr),Microsoft Sql Server 2019 (gdr),Microsoft Sql Server 2016 Service Pack 3 (gdr),Microsoft Sql Server 2016 Service Pack 3 Azure Connect Feature Pack,Microsoft Sql Server 2017 (cu 31),Microsoft Sql Server 2022 (gdr),Microsoft Sql Server 2019 For X64-based Systems (cu 27),Microsoft Sql Server 2022 For (cu 13)",8.8,HIGH,0.0005300000193528831,false,false,false,false,,false,false,2024-07-09T17:15:00.000Z,0
CVE-2024-21303,https://securityvulnerability.io/vulnerability/CVE-2024-21303,SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability,"A vulnerability exists in the Microsoft SQL Server Native Client OLE DB Provider that allows for remote code execution. This occurs due to improper validation of input data, enabling an attacker to execute arbitrary code on the affected system. Exploitation of this vulnerability can lead to unauthorized access and manipulation of sensitive data within the database environment. Ensuring proper security measures and timely updates is essential to mitigate potential risks associated with this vulnerability.",Microsoft,"Microsoft Sql Server 2022 For (cu 13),Microsoft Sql Server 2019 For X64-based Systems (cu 27),Microsoft Sql Server 2017 (gdr),Microsoft Sql Server 2019 (gdr),Microsoft Sql Server 2016 Service Pack 3 (gdr),Microsoft Sql Server 2016 Service Pack 3 Azure Connect Feature Pack,Microsoft Sql Server 2017 (cu 31),Microsoft Sql Server 2022 (gdr)",8.8,HIGH,0.0016400000313296914,false,false,false,false,,false,false,2024-07-09T17:15:00.000Z,0
CVE-2024-21308,https://securityvulnerability.io/vulnerability/CVE-2024-21308,SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability,"The SQL Server Native Client OLE DB Provider is susceptible to a vulnerability that enables remote code execution. This flaw potentially allows an attacker to execute arbitrary code on the affected system by exploiting the database connectivity misconfigurations. Attackers might leverage this vulnerability to manipulate database operations or to gain control over the affected server environment. Proper configuration, timely patching, and security best practices are essential to mitigate the risks associated with this vulnerability and to safeguard sensitive data.",Microsoft,"Microsoft Sql Server 2017 (gdr),Microsoft Sql Server 2019 (gdr),Microsoft Sql Server 2016 Service Pack 3 (gdr),Microsoft Sql Server 2016 Service Pack 3 Azure Connect Feature Pack,Microsoft Sql Server 2017 (cu 31),Microsoft Sql Server 2022 (gdr),Microsoft Sql Server 2019 For X64-based Systems (cu 27),Microsoft Sql Server 2022 For (cu 13)",8.8,HIGH,0.0004299999854993075,false,false,false,false,,false,false,2024-07-09T17:15:00.000Z,0
CVE-2024-21317,https://securityvulnerability.io/vulnerability/CVE-2024-21317,SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability,"The SQL Server Native Client OLE DB Provider is susceptible to a remote code execution vulnerability, which could allow an attacker to execute arbitrary code on a target system. This vulnerability arises from improper validation of certain inputs, enabling a malicious entity to send specially crafted requests to the affected components. If exploited, an attacker could gain unauthorized access and control over the database server, potentially compromising sensitive data and impacting system integrity. Users are urged to review their security settings and apply necessary updates as advised by Microsoft to mitigate this vulnerability.",Microsoft,"Microsoft Sql Server 2017 (gdr),Microsoft Sql Server 2019 (gdr),Microsoft Sql Server 2016 Service Pack 3 (gdr),Microsoft Sql Server 2016 Service Pack 3 Azure Connect Feature Pack,Microsoft Sql Server 2017 (cu 31),Microsoft Sql Server 2022 (gdr),Microsoft Sql Server 2019 For X64-based Systems (cu 27),Microsoft Sql Server 2022 For (cu 13)",8.8,HIGH,0.0004299999854993075,false,false,false,false,,false,false,2024-07-09T17:15:00.000Z,0
CVE-2024-21331,https://securityvulnerability.io/vulnerability/CVE-2024-21331,SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability,"The SQL Server Native Client OLE DB Provider has a vulnerability that enables remote code execution. This allows attackers to exploit the flaw and execute arbitrary code in the context of the affected application. The vulnerability arises from improper handling of input and can be initiated remotely, making it critical for users of the SQL Server Native Client OLE DB Provider to apply relevant patches and updates. Organizations using the affected versions should prioritize security assessments and remediation steps to mitigate potential risks.",Microsoft,"Microsoft Sql Server 2017 (gdr),Microsoft Sql Server 2019 (gdr),Microsoft Sql Server 2016 Service Pack 3 (gdr),Microsoft Sql Server 2016 Service Pack 3 Azure Connect Feature Pack,Microsoft Sql Server 2017 (cu 31),Microsoft Sql Server 2022 (gdr),Microsoft Sql Server 2022 For (cu 13),Microsoft Sql Server 2019 For X64-based Systems (cu 27)",8.8,HIGH,0.0004299999854993075,false,false,false,false,,false,false,2024-07-09T17:15:00.000Z,0
CVE-2024-21332,https://securityvulnerability.io/vulnerability/CVE-2024-21332,SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability,"This vulnerability exists in the SQL Server Native Client OLE DB Provider, allowing attackers to execute arbitrary code on the affected system when the client processes specially crafted requests. Successful exploitation could lead to unauthorized actions and data breaches, highlighting the importance of timely updates and system monitoring in cybersecurity frameworks.",Microsoft,"Microsoft Sql Server 2017 (gdr),Microsoft Sql Server 2019 (gdr),Microsoft Sql Server 2016 Service Pack 3 (gdr),Microsoft Sql Server 2016 Service Pack 3 Azure Connect Feature Pack,Microsoft Sql Server 2017 (cu 31),Microsoft Sql Server 2022 (gdr),Microsoft Sql Server 2022 For (cu 13),Microsoft Sql Server 2019 For X64-based Systems (cu 27)",8.8,HIGH,0.0004299999854993075,false,false,false,false,,false,false,2024-07-09T17:15:00.000Z,0
CVE-2024-21333,https://securityvulnerability.io/vulnerability/CVE-2024-21333,SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability,"The SQL Server Native Client OLE DB Provider has a vulnerability that allows for remote code execution. This flaw can be exploited by attackers to execute arbitrary code on the server, potentially leading to unauthorized access, data manipulation, or further exploitation of the network. Users are urged to apply the necessary patches and follow best security practices to safeguard their systems against potential threats.",Microsoft,"Microsoft Sql Server 2017 (gdr),Microsoft Sql Server 2019 (gdr),Microsoft Sql Server 2016 Service Pack 3 (gdr),Microsoft Sql Server 2016 Service Pack 3 Azure Connect Feature Pack,Microsoft Sql Server 2017 (cu 31),Microsoft Sql Server 2022 (gdr),Microsoft Sql Server 2019 For X64-based Systems (cu 27),Microsoft Sql Server 2022 For (cu 13)",8.8,HIGH,0.0004299999854993075,false,false,false,false,,false,false,2024-07-09T17:15:00.000Z,0
CVE-2024-21335,https://securityvulnerability.io/vulnerability/CVE-2024-21335,SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability,"The SQL Server Native Client OLE DB Provider vulnerability allows attackers to execute remote code on the server where the client is installed. This exploitation method uses specially crafted requests, which can lead to unauthorized actions and access to sensitive data. Organizations relying on this technology must promptly apply the latest security updates to mitigate potential risks associated with this vulnerability.",Microsoft,"Microsoft Sql Server 2017 (gdr),Microsoft Sql Server 2019 (gdr),Microsoft Sql Server 2016 Service Pack 3 (gdr),Microsoft Sql Server 2016 Service Pack 3 Azure Connect Feature Pack,Microsoft Sql Server 2017 (cu 31),Microsoft Sql Server 2022 (gdr),Microsoft Sql Server 2019 For X64-based Systems (cu 27),Microsoft Sql Server 2022 For (cu 13)",8.8,HIGH,0.0004299999854993075,false,false,false,false,,false,false,2024-07-09T17:15:00.000Z,0
CVE-2024-21373,https://securityvulnerability.io/vulnerability/CVE-2024-21373,SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability,"The vulnerability within the SQL Server Native Client OLE DB Provider allows for potential remote code execution, which could enable an attacker to gain the same privileges as the current user. If a user is logged in with elevated privileges, the attacker could exploit this vulnerability to perform actions that the user is authorized to complete. Mitigating this issue is essential for maintaining data security and preventing unauthorized access to sensitive systems and information.",Microsoft,"Microsoft Sql Server 2017 (gdr),Microsoft Sql Server 2019 (gdr),Microsoft Sql Server 2016 Service Pack 3 (gdr),Microsoft Sql Server 2016 Service Pack 3 Azure Connect Feature Pack,Microsoft Sql Server 2017 (cu 31),Microsoft Sql Server 2022 (gdr),Microsoft Sql Server 2019 For X64-based Systems (cu 27),Microsoft Sql Server 2022 For (cu 13)",8.8,HIGH,0.0004299999854993075,false,false,false,false,,false,false,2024-07-09T17:15:00.000Z,0
CVE-2024-21398,https://securityvulnerability.io/vulnerability/CVE-2024-21398,SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability,"The SQL Server Native Client OLE DB Provider has a vulnerability that could allow an attacker to execute remote code on an affected system. This issue arises from improper validation of input data, which could be exploited by an unauthenticated attacker through specially crafted queries. Organizations utilizing the SQL Server Native Client OLE DB Provider should assess their environments to mitigate potential exposure and ensure system integrity.",Microsoft,"Microsoft Sql Server 2017 (gdr),Microsoft Sql Server 2019 (gdr),Microsoft Sql Server 2016 Service Pack 3 (gdr),Microsoft Sql Server 2016 Service Pack 3 Azure Connect Feature Pack,Microsoft Sql Server 2017 (cu 31),Microsoft Sql Server 2022 (gdr),Microsoft Sql Server 2019 For X64-based Systems (cu 27),Microsoft Sql Server 2022 For (cu 13)",8.8,HIGH,0.0004299999854993075,false,false,false,false,,false,false,2024-07-09T17:15:00.000Z,0
CVE-2024-21414,https://securityvulnerability.io/vulnerability/CVE-2024-21414,SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability,"The SQL Server Native Client OLE DB Provider contains a vulnerability that allows for remote code execution. An attacker could exploit this flaw by sending a specially crafted request to the affected server, leading to unintended code execution within the affected product. This vulnerability affects several versions of SQL Server Native Client, thereby posing significant risks to data integrity and system security if unaddressed. Organizations utilizing these affected versions should prioritize updates and mitigations outlined in Microsoft’s advisory.",Microsoft,"Microsoft Sql Server 2017 (gdr),Microsoft Sql Server 2019 (gdr),Microsoft Sql Server 2016 Service Pack 3 (gdr),Microsoft Sql Server 2016 Service Pack 3 Azure Connect Feature Pack,Microsoft Sql Server 2017 (cu 31),Microsoft Sql Server 2022 (gdr),Microsoft Sql Server 2022 For (cu 13),Microsoft Sql Server 2019 For X64-based Systems (cu 27)",8.8,HIGH,0.0004299999854993075,false,false,false,false,,false,false,2024-07-09T17:15:00.000Z,0
CVE-2024-21415,https://securityvulnerability.io/vulnerability/CVE-2024-21415,SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability,"The SQL Server Native Client OLE DB Provider presents a vulnerability that could allow an attacker to execute arbitrary code on the affected system. This issue stems from improper handling of requests, which could lead to unauthorized actions and data manipulation. Mitigating this vulnerability is essential for protecting sensitive data and maintaining the integrity of SQL Server environments.",Microsoft,"Microsoft Sql Server 2017 (gdr),Microsoft Sql Server 2019 (gdr),Microsoft Sql Server 2016 Service Pack 3 (gdr),Microsoft Sql Server 2016 Service Pack 3 Azure Connect Feature Pack,Microsoft Sql Server 2017 (cu 31),Microsoft Sql Server 2022 (gdr),Microsoft Sql Server 2022 For (cu 13),Microsoft Sql Server 2019 For X64-based Systems (cu 27)",8.8,HIGH,0.0004299999854993075,false,false,false,false,,false,false,2024-07-09T17:15:00.000Z,0
CVE-2024-21425,https://securityvulnerability.io/vulnerability/CVE-2024-21425,SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability,"An identified vulnerability in the SQL Server Native Client OLE DB Provider allows for the potential execution of remote code. This vulnerability can be exploited by an attacker to gain unauthorized access to a system, posing significant risks to data integrity and confidentiality. Organizations using affected versions should be vigilant and apply the necessary updates to mitigate exposure. Detailed guidance on addressing this vulnerability is available through Microsoft's advisory.",Microsoft,"Microsoft Sql Server 2019 For X64-based Systems (cu 27),Microsoft Sql Server 2022 For (cu 13),Microsoft Sql Server 2017 (gdr),Microsoft Sql Server 2019 (gdr),Microsoft Sql Server 2016 Service Pack 3 (gdr),Microsoft Sql Server 2016 Service Pack 3 Azure Connect Feature Pack,Microsoft Sql Server 2017 (cu 31),Microsoft Sql Server 2022 (gdr)",8.8,HIGH,0.0004299999854993075,false,false,false,false,,false,false,2024-07-09T17:15:00.000Z,0
CVE-2024-21428,https://securityvulnerability.io/vulnerability/CVE-2024-21428,SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability,"The SQL Server Native Client OLE DB Provider has a vulnerability that could allow an attacker to execute arbitrary code on a system through a specially crafted OLE DB request. This vulnerability can be exploited remotely, emphasizing the need for users to apply the necessary updates and apply security best practices. Ensuring your systems are patched against CVE-2024-21428 is crucial for maintaining the security and integrity of your SQL Server installations. Detailed guidance on mitigating this risk can be found in the applicable vendor advisory.",Microsoft,"Microsoft Sql Server 2017 (gdr),Microsoft Sql Server 2019 (gdr),Microsoft Sql Server 2016 Service Pack 3 (gdr),Microsoft Sql Server 2016 Service Pack 3 Azure Connect Feature Pack,Microsoft Sql Server 2017 (cu 31),Microsoft Sql Server 2022 (gdr),Microsoft Sql Server 2019 For X64-based Systems (cu 27),Microsoft Sql Server 2022 For (cu 13)",8.8,HIGH,0.0004299999854993075,false,false,false,false,,false,false,2024-07-09T17:15:00.000Z,0
CVE-2024-21449,https://securityvulnerability.io/vulnerability/CVE-2024-21449,SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability,"The vulnerability in the SQL Server Native Client OLE DB Provider allows attackers to execute arbitrary code remotely. This issue arises due to improper handling of OLE DB requests, potentially leading to unauthorized access and execution of malicious scripts, which puts the confidentiality, integrity, and availability of data at risk. Users and administrators are advised to take immediate action by applying the necessary updates and following security recommendations to mitigate potential threats.",Microsoft,"Microsoft Sql Server 2017 (gdr),Microsoft Sql Server 2019 (gdr),Microsoft Sql Server 2016 Service Pack 3 (gdr),Microsoft Sql Server 2016 Service Pack 3 Azure Connect Feature Pack,Microsoft Sql Server 2017 (cu 31),Microsoft Sql Server 2022 (gdr),Microsoft Sql Server 2022 For (cu 13),Microsoft Sql Server 2019 For X64-based Systems (cu 27)",8.8,HIGH,0.0005300000193528831,false,false,false,false,,false,false,2024-07-09T17:15:00.000Z,0