CVE-2024-29043Use After Free in Microsoft Odbc Driver 17 FOR SQL Server ON Linux

CWE-416Use After Free4 documents4 sources
Severity
8.8HIGHNVD
EPSS
4.0%
top 11.57%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
12
Microsoft Odbc Driver 17 FOR SQL Server ON LinuxMicrosoft Odbc Driver 17 FOR SQL Server ON MacosMicrosoft Odbc Driver 17 FOR SQL Server ON Windows+9 more
Timeline
PublishedApr 9

Description

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages11 packages

🔴Vulnerability Details

2
GHSA
GHSA-78v4-x94j-xvq4: Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability2024-04-09
CVEList
Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability2024-04-09

📋Vendor Advisories

1
Microsoft
Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability2024-04-09
CVE-2024-29043 — Use After Free in Microsoft | cvebase