CVE-2019-1068: A remote code execution vulnerability exists in Microsoft SQL Server when it incorrectly handles processing of internal functions, aka 'Microsoft SQL Server…

high8.8CVSS 3.0

AVNACLPRLUINSUCHIHAH

A remote code execution vulnerability exists in Microsoft SQL Server when it incorrectly handles processing of internal functions, aka 'Microsoft SQL Server Remote Code Execution Vulnerability'.

Affected

22 ranges

Vendor	Product	Version range	Fixed in
microsoft	microsoft_sql_server	—	—
microsoft	microsoft_sql_server	—	—
microsoft	microsoft_sql_server	—	—
microsoft	microsoft_sql_server	—	—
microsoft	microsoft_sql_server	—	—
microsoft	microsoft_sql_server_2014_service_pack_2_for_32-bit_systems	—	—
microsoft	microsoft_sql_server_2014_service_pack_2_for_x64-based_systems	—	—
microsoft	microsoft_sql_server_2014_service_pack_3_for_32-bit_systems	—	—
microsoft	microsoft_sql_server_2014_service_pack_3_for_x64-based_systems	—	—
microsoft	microsoft_sql_server_2016_for_x64-based_systems_service_pack_1	—	—
microsoft	microsoft_sql_server_2016_for_x64-based_systems_service_pack_2	—	—
microsoft	microsoft_sql_server_2017_for_x64-based_systems	—	—
microsoft	sql_server	—	—
microsoft	sql_server	—	—
microsoft	sql_server	—	—
msrc	microsoft_sql_server_2014_service_pack_2_for_32-bit_systems	—	—
msrc	microsoft_sql_server_2014_service_pack_2_for_x64-based_systems	—	—
msrc	microsoft_sql_server_2014_service_pack_3_for_32-bit_systems	—	—
msrc	microsoft_sql_server_2014_service_pack_3_for_x64-based_systems	—	—
msrc	microsoft_sql_server_2016_for_x64-based_systems_service_pack_1	—	—
msrc	microsoft_sql_server_2016_for_x64-based_systems_service_pack_2	—	—
msrc	microsoft_sql_server_2017_for_x64-based_systems	—	—

CVSS provenance

nvdv3.08.8HIGHCVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

vulncheck8.8HIGH