cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-20701,https://securityvulnerability.io/vulnerability/CVE-2024-20701,SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability,"A vulnerability has been identified in the SQL Server Native Client OLE DB Provider that allows for remote code execution. This flaw may allow an attacker to execute arbitrary code on the affected system, potentially compromising sensitive data and leading to unauthorized access. Users of the SQL Server Native Client OLE DB Provider are advised to apply the necessary patches and follow best security practices to mitigate potential risks.",Microsoft,"Microsoft Sql Server 2017 (gdr),Microsoft Sql Server 2019 (gdr),Microsoft Sql Server 2016 Service Pack 3 (gdr),Microsoft Sql Server 2016 Service Pack 3 Azure Connect Feature Pack,Microsoft Sql Server 2017 (cu 31),Microsoft Sql Server 2022 (gdr),Microsoft Sql Server 2019 For X64-based Systems (cu 27),Microsoft Sql Server 2022 For (cu 13)",8.8,HIGH,0.0005300000193528831,false,false,false,false,,false,false,2024-07-09T17:15:00.000Z,0
CVE-2024-21303,https://securityvulnerability.io/vulnerability/CVE-2024-21303,SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability,"A vulnerability exists in the Microsoft SQL Server Native Client OLE DB Provider that allows for remote code execution. This occurs due to improper validation of input data, enabling an attacker to execute arbitrary code on the affected system. Exploitation of this vulnerability can lead to unauthorized access and manipulation of sensitive data within the database environment. Ensuring proper security measures and timely updates is essential to mitigate potential risks associated with this vulnerability.",Microsoft,"Microsoft Sql Server 2022 For (cu 13),Microsoft Sql Server 2019 For X64-based Systems (cu 27),Microsoft Sql Server 2017 (gdr),Microsoft Sql Server 2019 (gdr),Microsoft Sql Server 2016 Service Pack 3 (gdr),Microsoft Sql Server 2016 Service Pack 3 Azure Connect Feature Pack,Microsoft Sql Server 2017 (cu 31),Microsoft Sql Server 2022 (gdr)",8.8,HIGH,0.0016400000313296914,false,false,false,false,,false,false,2024-07-09T17:15:00.000Z,0
CVE-2024-21308,https://securityvulnerability.io/vulnerability/CVE-2024-21308,SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability,"The SQL Server Native Client OLE DB Provider is susceptible to a vulnerability that enables remote code execution. This flaw potentially allows an attacker to execute arbitrary code on the affected system by exploiting the database connectivity misconfigurations. Attackers might leverage this vulnerability to manipulate database operations or to gain control over the affected server environment. Proper configuration, timely patching, and security best practices are essential to mitigate the risks associated with this vulnerability and to safeguard sensitive data.",Microsoft,"Microsoft Sql Server 2017 (gdr),Microsoft Sql Server 2019 (gdr),Microsoft Sql Server 2016 Service Pack 3 (gdr),Microsoft Sql Server 2016 Service Pack 3 Azure Connect Feature Pack,Microsoft Sql Server 2017 (cu 31),Microsoft Sql Server 2022 (gdr),Microsoft Sql Server 2019 For X64-based Systems (cu 27),Microsoft Sql Server 2022 For (cu 13)",8.8,HIGH,0.0004299999854993075,false,false,false,false,,false,false,2024-07-09T17:15:00.000Z,0
CVE-2024-21317,https://securityvulnerability.io/vulnerability/CVE-2024-21317,SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability,"The SQL Server Native Client OLE DB Provider is susceptible to a remote code execution vulnerability, which could allow an attacker to execute arbitrary code on a target system. This vulnerability arises from improper validation of certain inputs, enabling a malicious entity to send specially crafted requests to the affected components. If exploited, an attacker could gain unauthorized access and control over the database server, potentially compromising sensitive data and impacting system integrity. Users are urged to review their security settings and apply necessary updates as advised by Microsoft to mitigate this vulnerability.",Microsoft,"Microsoft Sql Server 2017 (gdr),Microsoft Sql Server 2019 (gdr),Microsoft Sql Server 2016 Service Pack 3 (gdr),Microsoft Sql Server 2016 Service Pack 3 Azure Connect Feature Pack,Microsoft Sql Server 2017 (cu 31),Microsoft Sql Server 2022 (gdr),Microsoft Sql Server 2019 For X64-based Systems (cu 27),Microsoft Sql Server 2022 For (cu 13)",8.8,HIGH,0.0004299999854993075,false,false,false,false,,false,false,2024-07-09T17:15:00.000Z,0
CVE-2024-21331,https://securityvulnerability.io/vulnerability/CVE-2024-21331,SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability,"The SQL Server Native Client OLE DB Provider has a vulnerability that enables remote code execution. This allows attackers to exploit the flaw and execute arbitrary code in the context of the affected application. The vulnerability arises from improper handling of input and can be initiated remotely, making it critical for users of the SQL Server Native Client OLE DB Provider to apply relevant patches and updates. Organizations using the affected versions should prioritize security assessments and remediation steps to mitigate potential risks.",Microsoft,"Microsoft Sql Server 2017 (gdr),Microsoft Sql Server 2019 (gdr),Microsoft Sql Server 2016 Service Pack 3 (gdr),Microsoft Sql Server 2016 Service Pack 3 Azure Connect Feature Pack,Microsoft Sql Server 2017 (cu 31),Microsoft Sql Server 2022 (gdr),Microsoft Sql Server 2022 For (cu 13),Microsoft Sql Server 2019 For X64-based Systems (cu 27)",8.8,HIGH,0.0004299999854993075,false,false,false,false,,false,false,2024-07-09T17:15:00.000Z,0
CVE-2024-21332,https://securityvulnerability.io/vulnerability/CVE-2024-21332,SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability,"This vulnerability exists in the SQL Server Native Client OLE DB Provider, allowing attackers to execute arbitrary code on the affected system when the client processes specially crafted requests. Successful exploitation could lead to unauthorized actions and data breaches, highlighting the importance of timely updates and system monitoring in cybersecurity frameworks.",Microsoft,"Microsoft Sql Server 2017 (gdr),Microsoft Sql Server 2019 (gdr),Microsoft Sql Server 2016 Service Pack 3 (gdr),Microsoft Sql Server 2016 Service Pack 3 Azure Connect Feature Pack,Microsoft Sql Server 2017 (cu 31),Microsoft Sql Server 2022 (gdr),Microsoft Sql Server 2022 For (cu 13),Microsoft Sql Server 2019 For X64-based Systems (cu 27)",8.8,HIGH,0.0004299999854993075,false,false,false,false,,false,false,2024-07-09T17:15:00.000Z,0
CVE-2024-21333,https://securityvulnerability.io/vulnerability/CVE-2024-21333,SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability,"The SQL Server Native Client OLE DB Provider has a vulnerability that allows for remote code execution. This flaw can be exploited by attackers to execute arbitrary code on the server, potentially leading to unauthorized access, data manipulation, or further exploitation of the network. Users are urged to apply the necessary patches and follow best security practices to safeguard their systems against potential threats.",Microsoft,"Microsoft Sql Server 2017 (gdr),Microsoft Sql Server 2019 (gdr),Microsoft Sql Server 2016 Service Pack 3 (gdr),Microsoft Sql Server 2016 Service Pack 3 Azure Connect Feature Pack,Microsoft Sql Server 2017 (cu 31),Microsoft Sql Server 2022 (gdr),Microsoft Sql Server 2019 For X64-based Systems (cu 27),Microsoft Sql Server 2022 For (cu 13)",8.8,HIGH,0.0004299999854993075,false,false,false,false,,false,false,2024-07-09T17:15:00.000Z,0
CVE-2024-21335,https://securityvulnerability.io/vulnerability/CVE-2024-21335,SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability,"The SQL Server Native Client OLE DB Provider vulnerability allows attackers to execute remote code on the server where the client is installed. This exploitation method uses specially crafted requests, which can lead to unauthorized actions and access to sensitive data. Organizations relying on this technology must promptly apply the latest security updates to mitigate potential risks associated with this vulnerability.",Microsoft,"Microsoft Sql Server 2017 (gdr),Microsoft Sql Server 2019 (gdr),Microsoft Sql Server 2016 Service Pack 3 (gdr),Microsoft Sql Server 2016 Service Pack 3 Azure Connect Feature Pack,Microsoft Sql Server 2017 (cu 31),Microsoft Sql Server 2022 (gdr),Microsoft Sql Server 2019 For X64-based Systems (cu 27),Microsoft Sql Server 2022 For (cu 13)",8.8,HIGH,0.0004299999854993075,false,false,false,false,,false,false,2024-07-09T17:15:00.000Z,0
CVE-2024-21373,https://securityvulnerability.io/vulnerability/CVE-2024-21373,SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability,"The vulnerability within the SQL Server Native Client OLE DB Provider allows for potential remote code execution, which could enable an attacker to gain the same privileges as the current user. If a user is logged in with elevated privileges, the attacker could exploit this vulnerability to perform actions that the user is authorized to complete. Mitigating this issue is essential for maintaining data security and preventing unauthorized access to sensitive systems and information.",Microsoft,"Microsoft Sql Server 2017 (gdr),Microsoft Sql Server 2019 (gdr),Microsoft Sql Server 2016 Service Pack 3 (gdr),Microsoft Sql Server 2016 Service Pack 3 Azure Connect Feature Pack,Microsoft Sql Server 2017 (cu 31),Microsoft Sql Server 2022 (gdr),Microsoft Sql Server 2019 For X64-based Systems (cu 27),Microsoft Sql Server 2022 For (cu 13)",8.8,HIGH,0.0004299999854993075,false,false,false,false,,false,false,2024-07-09T17:15:00.000Z,0
CVE-2024-21398,https://securityvulnerability.io/vulnerability/CVE-2024-21398,SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability,"The SQL Server Native Client OLE DB Provider has a vulnerability that could allow an attacker to execute remote code on an affected system. This issue arises from improper validation of input data, which could be exploited by an unauthenticated attacker through specially crafted queries. Organizations utilizing the SQL Server Native Client OLE DB Provider should assess their environments to mitigate potential exposure and ensure system integrity.",Microsoft,"Microsoft Sql Server 2017 (gdr),Microsoft Sql Server 2019 (gdr),Microsoft Sql Server 2016 Service Pack 3 (gdr),Microsoft Sql Server 2016 Service Pack 3 Azure Connect Feature Pack,Microsoft Sql Server 2017 (cu 31),Microsoft Sql Server 2022 (gdr),Microsoft Sql Server 2019 For X64-based Systems (cu 27),Microsoft Sql Server 2022 For (cu 13)",8.8,HIGH,0.0004299999854993075,false,false,false,false,,false,false,2024-07-09T17:15:00.000Z,0
CVE-2024-21414,https://securityvulnerability.io/vulnerability/CVE-2024-21414,SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability,"The SQL Server Native Client OLE DB Provider contains a vulnerability that allows for remote code execution. An attacker could exploit this flaw by sending a specially crafted request to the affected server, leading to unintended code execution within the affected product. This vulnerability affects several versions of SQL Server Native Client, thereby posing significant risks to data integrity and system security if unaddressed. Organizations utilizing these affected versions should prioritize updates and mitigations outlined in Microsoft’s advisory.",Microsoft,"Microsoft Sql Server 2017 (gdr),Microsoft Sql Server 2019 (gdr),Microsoft Sql Server 2016 Service Pack 3 (gdr),Microsoft Sql Server 2016 Service Pack 3 Azure Connect Feature Pack,Microsoft Sql Server 2017 (cu 31),Microsoft Sql Server 2022 (gdr),Microsoft Sql Server 2022 For (cu 13),Microsoft Sql Server 2019 For X64-based Systems (cu 27)",8.8,HIGH,0.0004299999854993075,false,false,false,false,,false,false,2024-07-09T17:15:00.000Z,0
CVE-2024-21415,https://securityvulnerability.io/vulnerability/CVE-2024-21415,SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability,"The SQL Server Native Client OLE DB Provider presents a vulnerability that could allow an attacker to execute arbitrary code on the affected system. This issue stems from improper handling of requests, which could lead to unauthorized actions and data manipulation. Mitigating this vulnerability is essential for protecting sensitive data and maintaining the integrity of SQL Server environments.",Microsoft,"Microsoft Sql Server 2017 (gdr),Microsoft Sql Server 2019 (gdr),Microsoft Sql Server 2016 Service Pack 3 (gdr),Microsoft Sql Server 2016 Service Pack 3 Azure Connect Feature Pack,Microsoft Sql Server 2017 (cu 31),Microsoft Sql Server 2022 (gdr),Microsoft Sql Server 2022 For (cu 13),Microsoft Sql Server 2019 For X64-based Systems (cu 27)",8.8,HIGH,0.0004299999854993075,false,false,false,false,,false,false,2024-07-09T17:15:00.000Z,0
CVE-2024-21425,https://securityvulnerability.io/vulnerability/CVE-2024-21425,SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability,"An identified vulnerability in the SQL Server Native Client OLE DB Provider allows for the potential execution of remote code. This vulnerability can be exploited by an attacker to gain unauthorized access to a system, posing significant risks to data integrity and confidentiality. Organizations using affected versions should be vigilant and apply the necessary updates to mitigate exposure. Detailed guidance on addressing this vulnerability is available through Microsoft's advisory.",Microsoft,"Microsoft Sql Server 2019 For X64-based Systems (cu 27),Microsoft Sql Server 2022 For (cu 13),Microsoft Sql Server 2017 (gdr),Microsoft Sql Server 2019 (gdr),Microsoft Sql Server 2016 Service Pack 3 (gdr),Microsoft Sql Server 2016 Service Pack 3 Azure Connect Feature Pack,Microsoft Sql Server 2017 (cu 31),Microsoft Sql Server 2022 (gdr)",8.8,HIGH,0.0004299999854993075,false,false,false,false,,false,false,2024-07-09T17:15:00.000Z,0
CVE-2024-21428,https://securityvulnerability.io/vulnerability/CVE-2024-21428,SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability,"The SQL Server Native Client OLE DB Provider has a vulnerability that could allow an attacker to execute arbitrary code on a system through a specially crafted OLE DB request. This vulnerability can be exploited remotely, emphasizing the need for users to apply the necessary updates and apply security best practices. Ensuring your systems are patched against CVE-2024-21428 is crucial for maintaining the security and integrity of your SQL Server installations. Detailed guidance on mitigating this risk can be found in the applicable vendor advisory.",Microsoft,"Microsoft Sql Server 2017 (gdr),Microsoft Sql Server 2019 (gdr),Microsoft Sql Server 2016 Service Pack 3 (gdr),Microsoft Sql Server 2016 Service Pack 3 Azure Connect Feature Pack,Microsoft Sql Server 2017 (cu 31),Microsoft Sql Server 2022 (gdr),Microsoft Sql Server 2019 For X64-based Systems (cu 27),Microsoft Sql Server 2022 For (cu 13)",8.8,HIGH,0.0004299999854993075,false,false,false,false,,false,false,2024-07-09T17:15:00.000Z,0
CVE-2024-21449,https://securityvulnerability.io/vulnerability/CVE-2024-21449,SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability,"The vulnerability in the SQL Server Native Client OLE DB Provider allows attackers to execute arbitrary code remotely. This issue arises due to improper handling of OLE DB requests, potentially leading to unauthorized access and execution of malicious scripts, which puts the confidentiality, integrity, and availability of data at risk. Users and administrators are advised to take immediate action by applying the necessary updates and following security recommendations to mitigate potential threats.",Microsoft,"Microsoft Sql Server 2017 (gdr),Microsoft Sql Server 2019 (gdr),Microsoft Sql Server 2016 Service Pack 3 (gdr),Microsoft Sql Server 2016 Service Pack 3 Azure Connect Feature Pack,Microsoft Sql Server 2017 (cu 31),Microsoft Sql Server 2022 (gdr),Microsoft Sql Server 2022 For (cu 13),Microsoft Sql Server 2019 For X64-based Systems (cu 27)",8.8,HIGH,0.0005300000193528831,false,false,false,false,,false,false,2024-07-09T17:15:00.000Z,0
CVE-2024-28928,https://securityvulnerability.io/vulnerability/CVE-2024-28928,SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability,"The SQL Server Native Client OLE DB Provider has a vulnerability that allows remote code execution, posing significant security concerns for users of affected products. Attackers exploiting this vulnerability could potentially execute arbitrary code on the target system, leading to unauthorized actions and data exposure. Proper remediation measures are essential to mitigate risks associated with this vulnerability and ensure the integrity and security of the systems involved.",Microsoft,"Microsoft Sql Server 2017 (gdr),Microsoft Sql Server 2019 (gdr),Microsoft Sql Server 2016 Service Pack 3 (gdr),Microsoft Sql Server 2016 Service Pack 3 Azure Connect Feature Pack,Microsoft Sql Server 2017 (cu 31),Microsoft Sql Server 2022 (gdr),Microsoft Sql Server 2022 For (cu 13),Microsoft Sql Server 2019 For X64-based Systems (cu 27)",8.8,HIGH,0.0004299999854993075,false,false,false,false,,false,false,2024-07-09T17:15:00.000Z,0
CVE-2024-35271,https://securityvulnerability.io/vulnerability/CVE-2024-35271,SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability,"The vulnerability in the SQL Server Native Client OLE DB Provider allows an attacker to execute arbitrary code on a target machine. This issue arises due to improper handling of certain requests, leading to potential compromise of affected systems. Exploitation of this vulnerability could allow attackers to gain control over the affected systems, posing significant risks to data integrity and confidentiality.",Microsoft,"Microsoft Sql Server 2017 (gdr),Microsoft Sql Server 2019 (gdr),Microsoft Sql Server 2016 Service Pack 3 (gdr),Microsoft Sql Server 2016 Service Pack 3 Azure Connect Feature Pack,Microsoft Sql Server 2017 (cu 31),Microsoft Sql Server 2022 (gdr),Microsoft Sql Server 2019 For X64-based Systems (cu 27),Microsoft Sql Server 2022 For (cu 13)",8.8,HIGH,0.0005300000193528831,false,false,false,false,,false,false,2024-07-09T17:15:00.000Z,0
CVE-2024-35272,https://securityvulnerability.io/vulnerability/CVE-2024-35272,SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability,"The SQL Server Native Client OLE DB Provider contains a vulnerability that allows remote code execution through crafted input. Attackers with the ability to send a specially crafted request to an affected SQL Server could exploit this vulnerability, potentially leading to unauthorized access and control over systems. Proper patching of affected systems is crucial to mitigate risks associated with this vulnerability, as it can expose sensitive data and compromise system integrity. For more details, refer to Microsoft's advisory.",Microsoft,"Microsoft Visual Studio 2017 Version 15.9 (includes 15.0 - 15.8),Microsoft Visual Studio 2019 Version 16.11 (includes 16.0 - 16.10),Microsoft Visual Studio 2022 Version 17.6,Microsoft Visual Studio 2022 Version 17.8,Microsoft Visual Studio 2022 Version 17.10,Microsoft Visual Studio 2022 Version 17.11,Microsoft Sql Server 2019 (gdr),Microsoft Sql Server 2016 Service Pack 3 (gdr),Microsoft Sql Server 2016 Service Pack 3 Azure Connect Feature Pack,Microsoft Sql Server 2017 (cu 31),Microsoft Sql Server 2022 (gdr),Microsoft Sql Server 2019 For X64-based Systems (cu 27),Microsoft Sql Server 2022 For (cu 13)",8.8,HIGH,0.0005300000193528831,false,false,false,false,,false,false,2024-07-09T17:15:00.000Z,0
CVE-2024-35256,https://securityvulnerability.io/vulnerability/CVE-2024-35256,SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability,"The SQL Server Native Client OLE DB Provider contains a remote code execution vulnerability that could allow an attacker to run arbitrary code on the target system. This vulnerability could be exploited through a network-based attack, typically involving specially crafted requests. Successful exploitation grants the attacker the same user rights as the current user. If the current user is logged on with administrative user rights, an attacker who successfully exploits this vulnerability could take complete control of the affected system. Mitigation strategies are essential to safeguard systems from potential exploitation.",Microsoft,"Microsoft Sql Server 2017 (gdr),Microsoft Sql Server 2019 (gdr),Microsoft Sql Server 2016 Service Pack 3 (gdr),Microsoft Sql Server 2016 Service Pack 3 Azure Connect Feature Pack,Microsoft Sql Server 2017 (cu 31),Microsoft Sql Server 2022 (gdr),Microsoft Sql Server 2022 For (cu 13),Microsoft Sql Server 2019 For X64-based Systems (cu 27)",8.8,HIGH,0.0005300000193528831,false,false,false,false,,false,false,2024-07-09T17:15:00.000Z,0
CVE-2024-37318,https://securityvulnerability.io/vulnerability/CVE-2024-37318,SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability,"The SQL Server Native Client OLE DB Provider is affected by a vulnerability that allows an attacker to execute arbitrary code on the system. This vulnerability arises from improper validation of input data, potentially enabling an attacker to gain unauthorized access to sensitive data or disrupt service operations. Organizations utilizing affected versions should prioritize applying available updates to mitigate risk.",Microsoft,"Microsoft Sql Server 2019 For X64-based Systems (cu 27),Microsoft Sql Server 2022 For (cu 13),Microsoft Sql Server 2017 (gdr),Microsoft Sql Server 2019 (gdr),Microsoft Sql Server 2016 Service Pack 3 (gdr),Microsoft Sql Server 2016 Service Pack 3 Azure Connect Feature Pack,Microsoft Sql Server 2017 (cu 31),Microsoft Sql Server 2022 (gdr)",8.8,HIGH,0.0005300000193528831,false,false,false,false,,false,false,2024-07-09T17:15:00.000Z,0
CVE-2024-37326,https://securityvulnerability.io/vulnerability/CVE-2024-37326,SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability,"A remote code execution vulnerability exists in the SQL Server Native Client OLE DB Provider due to improper input validation. An attacker could exploit this vulnerability by sending specially crafted requests to an affected SQL Server instance, which could allow for arbitrary code execution in the context of the application using the OLE DB Provider. Successful exploitation may enable the attacker to create, modify, or delete data, install programs, or create new accounts with full user rights. Organizations using affected versions of the SQL Server Native Client should prioritize patching to mitigate this risk.",Microsoft,"Microsoft Sql Server 2017 (gdr),Microsoft Sql Server 2019 (gdr),Microsoft Sql Server 2016 Service Pack 3 (gdr),Microsoft Sql Server 2016 Service Pack 3 Azure Connect Feature Pack,Microsoft Sql Server 2017 (cu 31),Microsoft Sql Server 2022 (gdr),Microsoft Sql Server 2019 For X64-based Systems (cu 27),Microsoft Sql Server 2022 For (cu 13)",8.8,HIGH,0.0005300000193528831,false,false,false,false,,false,false,2024-07-09T17:15:00.000Z,0
CVE-2024-37327,https://securityvulnerability.io/vulnerability/CVE-2024-37327,SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability,"The SQL Server Native Client OLE DB Provider is vulnerable to a remote code execution flaw that can be exploited by attackers to gain unauthorized access and execute arbitrary code on the affected system. This vulnerability arises from improper handling of user input and may allow malicious users to manipulate the application, leading to potential data breaches and system compromise. It is crucial for users and organizations to stay updated with patches and mitigations recommended by the vendor to secure their systems against such vulnerabilities.",Microsoft,"Microsoft Sql Server 2017 (gdr),Microsoft Sql Server 2019 (gdr),Microsoft Sql Server 2016 Service Pack 3 (gdr),Microsoft Sql Server 2016 Service Pack 3 Azure Connect Feature Pack,Microsoft Sql Server 2017 (cu 31),Microsoft Sql Server 2022 (gdr),Microsoft Sql Server 2022 For (cu 13),Microsoft Sql Server 2019 For X64-based Systems (cu 27)",8.8,HIGH,0.0005300000193528831,false,false,false,false,,false,false,2024-07-09T17:15:00.000Z,0
CVE-2024-37328,https://securityvulnerability.io/vulnerability/CVE-2024-37328,SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability,"A vulnerability exists in the SQL Server Native Client OLE DB Provider that could enable an attacker to execute arbitrary code on affected installations. This issue can be exploited remotely without authentication, allowing attackers to potentially gain control over the database environment. It is essential for organizations to apply relevant updates and patches to minimize risks associated with this vulnerability.",Microsoft,"Microsoft Sql Server 2017 (gdr),Microsoft Sql Server 2019 (gdr),Microsoft Sql Server 2016 Service Pack 3 (gdr),Microsoft Sql Server 2016 Service Pack 3 Azure Connect Feature Pack,Microsoft Sql Server 2017 (cu 31),Microsoft Sql Server 2022 (gdr),Microsoft Sql Server 2019 For X64-based Systems (cu 27),Microsoft Sql Server 2022 For (cu 13)",8.8,HIGH,0.0005300000193528831,false,false,false,false,,false,false,2024-07-09T17:15:00.000Z,0
CVE-2024-37329,https://securityvulnerability.io/vulnerability/CVE-2024-37329,SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability,"The SQL Server Native Client OLE DB Provider is susceptible to a remote code execution vulnerability that could allow an attacker to execute arbitrary code on the target system. This vulnerability highlights the need for vigilance in database security practices, given its potential impact on the integrity and availability of system resources. Organizations using affected versions must review their security measures and apply necessary updates to mitigate risks associated with CVE-2024-37329.",Microsoft,"Microsoft Sql Server 2017 (gdr),Microsoft Sql Server 2019 (gdr),Microsoft Sql Server 2016 Service Pack 3 (gdr),Microsoft Sql Server 2016 Service Pack 3 Azure Connect Feature Pack,Microsoft Sql Server 2017 (cu 31),Microsoft Sql Server 2022 (gdr),Microsoft Sql Server 2019 For X64-based Systems (cu 27),Microsoft Sql Server 2022 For (cu 13)",8.8,HIGH,0.0005300000193528831,false,false,false,false,,false,false,2024-07-09T17:15:00.000Z,0
CVE-2024-37331,https://securityvulnerability.io/vulnerability/CVE-2024-37331,SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability,"The SQL Server Native Client OLE DB Provider contains a vulnerability that allows for remote code execution via crafted requests. This issue arises from improper handling of input, potentially enabling an attacker to execute arbitrary code on the server or application. Applications utilizing this provider are at risk, and it is essential for organizations to assess their exposure and implement appropriate security measures to mitigate potential attacks.",Microsoft,"Microsoft Sql Server 2017 (gdr),Microsoft Sql Server 2019 (gdr),Microsoft Sql Server 2016 Service Pack 3 (gdr),Microsoft Sql Server 2016 Service Pack 3 Azure Connect Feature Pack,Microsoft Sql Server 2017 (cu 31),Microsoft Sql Server 2022 (gdr),Microsoft Sql Server 2022 For (cu 13),Microsoft Sql Server 2019 For X64-based Systems (cu 27)",8.8,HIGH,0.0005300000193528831,false,false,false,false,,false,false,2024-07-09T17:15:00.000Z,0