Multiple vulnerabilities in Microsoft SQL Server

Popis

Multiple vulnerabilities were found in Microsoft SQL Server. Malicious users can exploit these vulnerabilities to execute arbitrary code, spoof user interface.

Below is a complete list of vulnerabilities:

1. A remote code execution vulnerability in Microsoft SQL Server can be exploited remotely to execute arbitrary code.
2. A spoofing vulnerability in Power BI Report Server can be exploited remotely to spoof user interface.
3. A remote code execution vulnerability in Microsoft SQL ODBC Driver can be exploited remotely to execute arbitrary code.
4. A remote code execution vulnerability in Microsoft ODBC Driver for SQL Server can be exploited remotely to execute arbitrary code.

Oficiální doporučení

• CVE-2023-21528

• CVE-2023-21806
• CVE-2023-21713
• CVE-2023-21705
• CVE-2023-21704
• CVE-2023-21718

Související produkty

• Microsoft-SQL-Server
• Microsoft-Azure
• Microsoft-Power-BI

seznam CVE

• CVE-2023-21528
  critical
• CVE-2023-21806
  critical
• CVE-2023-21713
  critical
• CVE-2023-21718
  critical
• CVE-2023-21705
  critical
• CVE-2023-21704
  critical

seznam KB

• 5021124
• 5021037
• 5021129
• 5021125
• 5021127
• 5021126
• 5021045
• 5023884
• 5021128
• 5021522

Zobrazit více

Zjistěte statistiky zranitelností šířících se ve vaší oblasti statistics.securelist.com