Multiple vulnerabilities in Microsoft SQL Server

Description

Multiple vulnerabilities were found in Microsoft SQL Server. Malicious users can exploit these vulnerabilities to execute arbitrary code.

Below is a complete list of vulnerabilities:

1. A remote code execution vulnerability in SQL Server Native Client can be exploited remotely to execute arbitrary code.
2. A remote code execution vulnerability in Microsoft SQL Server can be exploited remotely to execute arbitrary code.
3. A remote code execution vulnerability in Microsoft.SqlServer.XEvent.Configuration.dll can be exploited remotely to execute arbitrary code.

Original advisories

• CVE-2024-49009

• CVE-2024-49018
• CVE-2024-48997
• CVE-2024-49017
• CVE-2024-49012
• CVE-2024-49013
• CVE-2024-49006
• CVE-2024-49000
• CVE-2024-49021
• CVE-2024-49008
• CVE-2024-49015
• CVE-2024-48995
• CVE-2024-48998
• CVE-2024-49004
• CVE-2024-49001
• CVE-2024-49011
• CVE-2024-43462
• CVE-2024-49002
• CVE-2024-48999
• CVE-2024-49003
• CVE-2024-48996
• CVE-2024-49005
• CVE-2024-49007
• CVE-2024-43459
• CVE-2024-49043
• CVE-2024-49016
• CVE-2024-49010
• CVE-2024-38255
• CVE-2024-49014
• CVE-2024-48993
• CVE-2024-48994

Related products

• Microsoft-SQL-Server
• Microsoft-Azure

CVE list

• CVE-2024-49009
  critical
• CVE-2024-49018
  critical
• CVE-2024-48997
  critical
• CVE-2024-49017
  critical
• CVE-2024-49012
  critical
• CVE-2024-49013
  critical
• CVE-2024-49006
  critical
• CVE-2024-49000
  critical
• CVE-2024-49021
  critical
• CVE-2024-49008
  critical
• CVE-2024-49015
  critical
• CVE-2024-48995
  critical
• CVE-2024-48998
  critical
• CVE-2024-49004
  critical
• CVE-2024-49001
  critical
• CVE-2024-49011
  critical
• CVE-2024-43462
  critical
• CVE-2024-49002
  critical
• CVE-2024-48999
  critical
• CVE-2024-49003
  critical
• CVE-2024-48996
  critical
• CVE-2024-49005
  critical
• CVE-2024-49007
  critical
• CVE-2024-43459
  critical
• CVE-2024-49043
  critical
• CVE-2024-49016
  critical
• CVE-2024-49010
  critical
• CVE-2024-38255
  critical
• CVE-2024-49014
  critical
• CVE-2024-48993
  critical
• CVE-2024-48994
  critical

KB list

• 5046062
• 5046857
• 5046862
• 5046860
• 5046859
• 5046861
• 5046855
• 5046856
• 5046858
• 5058718

Read more

Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com