CVE-2024-35272
published 2024-07-09CVE-2024-35272: SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
high8.8CVSS 3.1
AVNACLPRNUIRSUCHIHAH
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
Affected
32 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microsoft | microsoft_sql_server_2016_service_pack_3 | >= 13.0.0 < 13.0.6441.1 | 13.0.6441.1 |
| microsoft | microsoft_sql_server_2016_service_pack_3_azure_connect_feature_pack | >= 13.0.0 < 13.0.7037.1 | 13.0.7037.1 |
| microsoft | microsoft_sql_server_2017 | >= 14.0.0 < 14.0.3471.2 | 14.0.3471.2 |
| microsoft | microsoft_sql_server_2019 | >= 15.0.0 < 15.0.2116.2 | 15.0.2116.2 |
| microsoft | microsoft_sql_server_2019_for_x64-based_systems | >= 15.0.0 < 15.0.4382.1 | 15.0.4382.1 |
| microsoft | microsoft_sql_server_2022 | >= 16.0.0 < 16.0.1121.4 | 16.0.1121.4 |
| microsoft | microsoft_sql_server_2022_for | >= 16.0.0 < 16.0.4131.2 | 16.0.4131.2 |
| microsoft | microsoft_visual_studio_2017_version_15.9 | >= 15.9.0 < 15.9.66 | 15.9.66 |
| microsoft | microsoft_visual_studio_2019_version_16.11 | >= 16.11.0 < 16.11.40 | 16.11.40 |
| microsoft | microsoft_visual_studio_2022_version_17.10 | >= 17.10 < 17.10.7 | 17.10.7 |
| microsoft | microsoft_visual_studio_2022_version_17.11 | >= 17.11 < 17.11.3 | 17.11.3 |
| microsoft | microsoft_visual_studio_2022_version_17.6 | >= 17.6.0 < 17.6.19 | 17.6.19 |
| microsoft | microsoft_visual_studio_2022_version_17.8 | >= 17.8.0 < 17.8.14 | 17.8.14 |
| microsoft | sql_server_2016 | < 13.0.6441.1 | 13.0.6441.1 |
| microsoft | sql_server_2016 | >= 13.0.7000.253 < 13.0.7037.1 | 13.0.7037.1 |
| microsoft | sql_server_2017 | < 14.0.2056.2 | 14.0.2056.2 |
| microsoft | sql_server_2017 | >= 14.0.3456.2 < 14.0.3471.2 | 14.0.3471.2 |
| microsoft | sql_server_2019 | < 15.0.2116.2 | 15.0.2116.2 |
| microsoft | sql_server_2019 | >= 15.0.4375.4 < 15.0.4382.1 | 15.0.4382.1 |
| microsoft | sql_server_2022 | < 16.0.1121.4 | 16.0.1121.4 |
| microsoft | sql_server_2022 | >= 16.0.4125.3 < 16.0.4131.2 | 16.0.4131.2 |
| msrc | microsoft_sql_server_2016_for_x64-based_systems_service_pack_3 | — | — |
| msrc | microsoft_sql_server_2016_for_x64-based_systems_service_pack_3_azure_connect_fea | — | — |
| msrc | microsoft_sql_server_2017_for_x64-based_systems | — | — |
| msrc | microsoft_sql_server_2019_for_x64-based_systems | — | — |