CVE-2023-36882
published 2023-08-08CVE-2023-36882: Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
PriorityP349high8.8CVSS 3.1
AVNACLPRNUIRSUCHIHAH
EPSS
1.29%
66.5th percentile
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
Affected
38 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microsoft | windows_10_1507 | < 10.0.10240.20107 | 10.0.10240.20107 |
| microsoft | windows_10_1607 | < 10.0.14393.6167 | 10.0.14393.6167 |
| microsoft | windows_10_1809 | < 10.0.17763.4737 | 10.0.17763.4737 |
| microsoft | windows_10_21h2 | < 10.0.19044.3324 | 10.0.19044.3324 |
| microsoft | windows_10_22h2 | < 10.0.19045.3324 | 10.0.19045.3324 |
| microsoft | windows_10_version_1507 | >= 10.0.10240.0 < 10.0.10240.20107 | 10.0.10240.20107 |
| microsoft | windows_10_version_1607 | >= 10.0.14393.0 < 10.0.14393.6167 | 10.0.14393.6167 |
| microsoft | windows_10_version_1809 | >= 10.0.0 < 10.0.17763.4737 | 10.0.17763.4737 |
| microsoft | windows_10_version_1809 | >= 10.0.17763.0 < 10.0.17763.4737 | 10.0.17763.4737 |
| microsoft | windows_10_version_21h2 | >= 10.0.19043.0 < 10.0.19044.3324 | 10.0.19044.3324 |
| microsoft | windows_10_version_22h2 | >= 10.0.19045.0 < 10.0.19045.3324 | 10.0.19045.3324 |
| microsoft | windows_11_21h2 | < 10.0.22000.2295 | 10.0.22000.2295 |
| microsoft | windows_11_22h2 | < 10.0.22621.2134 | 10.0.22621.2134 |
| microsoft | windows_11_version_21h2 | >= 10.0.0 < 10.0.22000.2295 | 10.0.22000.2295 |
| microsoft | windows_11_version_22h2 | >= 10.0.22621.0 < 10.0.22621.2134 | 10.0.22621.2134 |
| microsoft | windows_server_2008 | — | — |
| microsoft | windows_server_2008_r2_service_pack_1 | >= 6.1.7601.0 < 6.1.7601.26664 | 6.1.7601.26664 |
| microsoft | windows_server_2008_service_pack_2 | >= 6.0.6003.0 < 6.0.6003.22216 | 6.0.6003.22216 |
| microsoft | windows_server_2012 | — | — |
| microsoft | windows_server_2012 | >= 6.2.9200.0 < 6.2.9200.24414 | 6.2.9200.24414 |
| microsoft | windows_server_2012_r2 | >= 6.3.9600.0 < 6.3.9600.21503 | 6.3.9600.21503 |
| microsoft | windows_server_2016 | >= 10.0.14393.0 < 10.0.14393.6167 | 10.0.14393.6167 |
| microsoft | windows_server_2019 | >= 10.0.17763.0 < 10.0.17763.4737 | 10.0.17763.4737 |
| microsoft | windows_server_2022 | >= 10.0.20348.0 < 10.0.20348.1906 | 10.0.20348.1906 |
| msrc | windows_10 | — | — |
CVSS provenance
nvdv3.18.8HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
vendor_msrc8.8HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-7w82-6wqx-9r39: Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
ghsa_unreviewed·2023-08-08
CVE-2023-36882 [HIGH] GHSA-7w82-6wqx-9r39: Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
Microsoft
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
vendor_msrc·2023-08-08·CVSS 8.8
CVE-2023-36882 [HIGH] CWE-416 Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
FAQ: According to the CVSS metric, user interaction is required (UI:R). What interaction would the user have to do?
An attacker could exploit the vulnerability by tricking an authenticated user (CVSS metric UI:R) into attempting to connect to a malicious SQL server via a connection driver (for example: ODBC and / or OLEDB as applicable).
FAQ: According to the CVSS metric, the attack vector is network (AV:N) and the user interaction is required (UI:R). What is the target context of the remote code execution?
An authenticated victim who is connected to the network must be tricked or persuaded to connect to a malicious SQL database using their SQL client application. After the connection is made, the server ca
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2023-08-08
Published