NotCVE - vendor:"Microsoft" product:"Microsoft SQL Server 2017 (CU 31)"

86 results (0.002 seconds)

CVSS: 9.0EPSS: 0%CPEs: 8EXPL: 0

CVE-2025-49759 – Microsoft SQL Server Elevation of Privilege Vulnerability

https://notcve.org/view.php?id=CVE-2025-49759

12 Aug 2025 — Improper neutralization of special elements used in an sql command ('sql injection') in SQL Server allows an authorized attacker to elevate privileges over a network. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-49759 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •

CVSS: 9.0EPSS: 0%CPEs: 8EXPL: 0

CVE-2025-24999 – Microsoft SQL Server Elevation of Privilege Vulnerability

https://notcve.org/view.php?id=CVE-2025-24999

12 Aug 2025 — Improper access control in SQL Server allows an authorized attacker to elevate privileges over a network. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-24999 • CWE-284: Improper Access Control •

CVSS: 9.0EPSS: 0%CPEs: 8EXPL: 0

CVE-2025-53727 – Microsoft SQL Server Elevation of Privilege Vulnerability

https://notcve.org/view.php?id=CVE-2025-53727

12 Aug 2025 — Improper neutralization of special elements used in an sql command ('sql injection') in SQL Server allows an authorized attacker to elevate privileges over a network. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53727 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •

CVSS: 9.0EPSS: 0%CPEs: 8EXPL: 0

CVE-2025-49758 – Microsoft SQL Server Elevation of Privilege Vulnerability

https://notcve.org/view.php?id=CVE-2025-49758

CVSS: 7.8EPSS: 0%CPEs: 8EXPL: 1

CVE-2025-49719 – Microsoft SQL Server Information Disclosure Vulnerability

https://notcve.org/view.php?id=CVE-2025-49719

08 Jul 2025 — Improper input validation in SQL Server allows an unauthorized attacker to disclose information over a network. • https://github.com/HExploited/CVE-2025-49719-Exploit • CWE-20: Improper Input Validation •

CVSS: 7.8EPSS: 0%CPEs: 8EXPL: 0

CVE-2024-49021 – Microsoft SQL Server Remote Code Execution Vulnerability

https://notcve.org/view.php?id=CVE-2024-49021

12 Nov 2024 — Microsoft SQL Server Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-49021 • CWE-416: Use After Free •

CVSS: 10.0EPSS: 6%CPEs: 6EXPL: 0

CVE-2024-49018 – SQL Server Native Client Remote Code Execution Vulnerability

https://notcve.org/view.php?id=CVE-2024-49018

12 Nov 2024 — SQL Server Native Client Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-49018 • CWE-197: Numeric Truncation Error •

CVSS: 10.0EPSS: 4%CPEs: 6EXPL: 0

CVE-2024-49017 – SQL Server Native Client Remote Code Execution Vulnerability

https://notcve.org/view.php?id=CVE-2024-49017

12 Nov 2024 — SQL Server Native Client Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-49017 • CWE-122: Heap-based Buffer Overflow •

CVSS: 10.0EPSS: 4%CPEs: 6EXPL: 0

CVE-2024-49016 – SQL Server Native Client Remote Code Execution Vulnerability

https://notcve.org/view.php?id=CVE-2024-49016

12 Nov 2024 — SQL Server Native Client Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-49016 • CWE-416: Use After Free •

CVSS: 10.0EPSS: 4%CPEs: 6EXPL: 0

CVE-2024-49015 – SQL Server Native Client Remote Code Execution Vulnerability

https://notcve.org/view.php?id=CVE-2024-49015

12 Nov 2024 — SQL Server Native Client Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-49015 • CWE-122: Heap-based Buffer Overflow •

1 2 3 4 5