KLA12455
Multiple vulnerabilities in Microsoft SQL Server

Обновлено: 10/02/2022

Дата обнаружения	08/02/2022
Уровень угрозы	High
Описание	Multiple vulnerabilities were found in Microsoft SQL Server. Malicious users can exploit these vulnerabilities to obtain sensitive information, gain privileges. Below is a complete list of vulnerabilities: An information disclosure vulnerability in Microsoft Power BI can be exploited remotely to obtain sensitive information. An elevation of privilege vulnerability in SQL Server for Linux Containers can be exploited remotely to gain privileges.
Пораженные продукты	PowerBI-client JS SDK SQL Server 2019 for Linux Containers
Решение	Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)
Первичный источник обнаружения	CVE-2022-23254 CVE-2022-23276
Оказываемое влияние ?	OSI [?] PE [?]
Связанные продукты	Microsoft SQL Server
CVE-IDS	CVE-2022-232545.0Critical CVE-2022-232765.0Critical
KB list	5010657
	Узнай статистику распространения уязвимостей в твоем регионе

KLA12455Multiple vulnerabilities in Microsoft SQL Server