Total
110 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2002-0729 | 1 Microsoft | 1 Sql Server | 2025-04-03 | 5.0 MEDIUM | N/A |
|
Microsoft SQL Server 2000 allows remote attackers to cause a denial of service via a malformed 0x08 packet that is missing a colon separator.
|
|||||
| CVE-2000-1087 | 1 Microsoft | 2 Data Engine, Sql Server | 2025-04-03 | 4.6 MEDIUM | N/A |
|
The xp_proxiedmetadata function in Microsoft SQL Server 2000 and SQL Server Desktop Engine (MSDE) does not properly restrict the length of a buffer before calling the srv_paraminfo function in the SQL Server API for Extended Stored Procedures (XP), which allows an attacker to cause a denial of service or execute arbitrary commands, aka the "Extended Stored Procedure Parameter Parsing" vulnerability.
|
|||||
| CVE-2002-0057 | 1 Microsoft | 4 Internet Explorer, Sql Server, Windows Xp and 1 more | 2025-04-03 | 5.0 MEDIUM | N/A |
|
XMLHTTP control in Microsoft XML Core Services 2.6 and later does not properly handle IE Security Zone settings, which allows remote attackers to read arbitrary files by specifying a local file as an XML Data Source.
|
|||||
| CVE-2001-0344 | 1 Microsoft | 1 Sql Server | 2025-04-03 | 7.2 HIGH | N/A |
|
An SQL query method in Microsoft SQL Server 2000 Gold and 7.0 using Mixed Mode allows local database users to gain privileges by reusing a cached connection of the sa administrator account.
|
|||||
| CVE-2000-1082 | 1 Microsoft | 2 Data Engine, Sql Server | 2025-04-03 | 4.6 MEDIUM | N/A |
|
The xp_enumresultset function in SQL Server and Microsoft SQL Server Desktop Engine (MSDE) does not properly restrict the length of a buffer before calling the srv_paraminfo function in the SQL Server API for Extended Stored Procedures (XP), which allows an attacker to cause a denial of service or execute arbitrary commands, aka the "Extended Stored Procedure Parameter Parsing" vulnerability.
|
|||||
| CVE-2022-29143 | 1 Microsoft | 1 Sql Server | 2025-01-02 | 6.0 MEDIUM | 7.5 HIGH |
|
Microsoft SQL Server Remote Code Execution Vulnerability
|
|||||
| CVE-2024-0056 | 1 Microsoft | 19 .net, .net Framework, Microsoft.data.sqlclient and 16 more | 2024-11-21 | N/A | 8.7 HIGH |
|
Microsoft.Data.SqlClient and System.Data.SqlClient SQL Data Provider Security Feature Bypass Vulnerability
|
|||||
| CVE-2023-38169 | 1 Microsoft | 3 Odbc Driver For Sql Server, Ole Db Driver For Sql Server, Sql Server | 2024-11-21 | N/A | 8.8 HIGH |
|
Microsoft SQL OLE DB Remote Code Execution Vulnerability
|
|||||
| CVE-2023-36785 | 1 Microsoft | 2 Odbc Driver For Sql Server, Sql Server | 2024-11-21 | N/A | 7.8 HIGH |
|
Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability
|
|||||
| CVE-2023-36730 | 1 Microsoft | 2 Odbc Driver For Sql Server, Sql Server | 2024-11-21 | N/A | 7.8 HIGH |
|
Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability
|
|||||
| CVE-2023-36728 | 1 Microsoft | 3 Odbc Driver For Sql Server, Ole Db Driver For Sql Server, Sql Server | 2024-11-21 | N/A | 5.5 MEDIUM |
|
Microsoft SQL Server Denial of Service Vulnerability
|
|||||
| CVE-2023-36420 | 1 Microsoft | 2 Odbc Driver For Sql Server, Sql Server | 2024-11-21 | N/A | 7.8 HIGH |
|
Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability
|
|||||
| CVE-2023-36417 | 1 Microsoft | 2 Ole Db Driver For Sql Server, Sql Server | 2024-11-21 | N/A | 7.8 HIGH |
|
Microsoft SQL OLE DB Remote Code Execution Vulnerability
|
|||||
| CVE-2023-32028 | 1 Microsoft | 2 Ole Db Driver For Sql Server, Sql Server | 2024-11-21 | N/A | 7.8 HIGH |
|
Microsoft SQL OLE DB Remote Code Execution Vulnerability
|
|||||
| CVE-2023-32027 | 1 Microsoft | 2 Odbc Driver For Sql Server, Sql Server | 2024-11-21 | N/A | 7.8 HIGH |
|
Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability
|
|||||
| CVE-2023-32026 | 1 Microsoft | 2 Odbc Driver For Sql Server, Sql Server | 2024-11-21 | N/A | 7.8 HIGH |
|
Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability
|
|||||
| CVE-2023-32025 | 1 Microsoft | 2 Odbc Driver For Sql Server, Sql Server | 2024-11-21 | N/A | 7.8 HIGH |
|
Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability
|
|||||
| CVE-2023-29356 | 1 Microsoft | 2 Odbc Driver For Sql Server, Sql Server | 2024-11-21 | N/A | 7.8 HIGH |
|
Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability
|
|||||
| CVE-2023-29349 | 1 Microsoft | 3 Odbc Driver For Sql Server, Ole Db Driver For Sql Server, Sql Server | 2024-11-21 | N/A | 7.8 HIGH |
|
Microsoft ODBC and OLE DB Remote Code Execution Vulnerability
|
|||||
| CVE-2023-23384 | 1 Microsoft | 1 Sql Server | 2024-11-21 | N/A | 7.3 HIGH |
|
Microsoft SQL Server Remote Code Execution Vulnerability
|
|||||
| CVE-2023-21718 | 1 Microsoft | 1 Sql Server | 2024-11-21 | N/A | 7.8 HIGH |
|
Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability
|
|||||
| CVE-2023-21713 | 1 Microsoft | 1 Sql Server | 2024-11-21 | N/A | 8.8 HIGH |
|
Microsoft SQL Server Remote Code Execution Vulnerability
|
|||||
| CVE-2023-21705 | 1 Microsoft | 1 Sql Server | 2024-11-21 | N/A | 8.8 HIGH |
|
Microsoft SQL Server Remote Code Execution Vulnerability
|
|||||
| CVE-2023-21704 | 1 Microsoft | 1 Sql Server | 2024-11-21 | N/A | 7.8 HIGH |
|
Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability
|
|||||
| CVE-2023-21528 | 1 Microsoft | 1 Sql Server | 2024-11-21 | N/A | 7.8 HIGH |
|
Microsoft SQL Server Remote Code Execution Vulnerability
|
|||||
| CVE-2022-23276 | 2 Linux, Microsoft | 2 Linux Kernel, Sql Server | 2024-11-21 | 4.6 MEDIUM | 7.8 HIGH |
|
SQL Server for Linux Containers Elevation of Privilege Vulnerability
|
|||||
| CVE-2021-1636 | 1 Microsoft | 1 Sql Server | 2024-11-21 | 6.5 MEDIUM | 8.8 HIGH |
|
Microsoft SQL Elevation of Privilege Vulnerability
|
|||||
| CVE-2019-1068 | 1 Microsoft | 1 Sql Server | 2024-11-21 | 6.5 MEDIUM | 8.8 HIGH |
|
A remote code execution vulnerability exists in Microsoft SQL Server when it incorrectly handles processing of internal functions, aka 'Microsoft SQL Server Remote Code Execution Vulnerability'.
|
|||||
| CVE-2019-0819 | 1 Microsoft | 1 Sql Server | 2024-11-21 | 4.0 MEDIUM | 6.5 MEDIUM |
|
An information disclosure vulnerability exists in Microsoft SQL Server Analysis Services when it improperly enforces metadata permissions, aka 'Microsoft SQL Server Analysis Services Information Disclosure Vulnerability'.
|
|||||
| CVE-2018-8273 | 1 Microsoft | 1 Sql Server | 2024-11-21 | 10.0 HIGH | 9.8 CRITICAL |
|
A buffer overflow vulnerability exists in the Microsoft SQL Server that could allow remote code execution on an affected system, aka "Microsoft SQL Server Remote Code Execution Vulnerability." This affects Microsoft SQL Server.
|
|||||