cbcvebase.
CVE-2024-49043
published 2024-11-12

CVE-2024-49043: Microsoft.SqlServer.XEvent.Configuration.dll Remote Code Execution Vulnerability

high7.8CVSS 3.1
AVLACLPRNUIRSUCHIHAH
Microsoft.SqlServer.XEvent.Configuration.dll Remote Code Execution Vulnerability

Affected

30 ranges· showing 25
VendorProductVersion rangeFixed in
microsoftmicrosoft_sql_server_2016_service_pack_3>= 13.0.0 < 13.0.6455.213.0.6455.2
microsoftmicrosoft_sql_server_2016_service_pack_3_azure_connect_feature_pack>= 13.0.0 < 13.0.7050.213.0.7050.2
microsoftmicrosoft_sql_server_2017>= 14.0.0 < 14.0.2070.114.0.2070.1
microsoftmicrosoft_sql_server_2017>= 14.0.0 < 14.0.3485.114.0.3485.1
microsoftmicrosoft_sql_server_2019>= 15.0.0 < 15.0.2130.315.0.2130.3
microsoftmicrosoft_sql_server_2019>= 15.0.0 < 15.0.4410.115.0.4410.1
microsoftmicrosoft_sql_server_2022>= 16.0.0 < 16.0.1135.216.0.1135.2
microsoftmicrosoft_sql_server_2022_for>= 16.0.0 < 16.0.4155.416.0.4155.4
microsoftsql_server_2016>= 13.0.6300.2 < 13.0.6455.213.0.6455.2
microsoftsql_server_2016>= 13.0.7000.253 < 13.0.7050.213.0.7050.2
microsoftsql_server_2017>= 14.0.1000.169 < 14.0.2070.114.0.2070.1
microsoftsql_server_2017>= 14.0.3006.16 < 14.0.3485.114.0.3485.1
microsoftsql_server_2019>= 15.0.2000.5 < 15.0.2130.315.0.2130.3
microsoftsql_server_2019>= 15.0.4003.23 < 15.0.4410.115.0.4410.1
microsoftsql_server_2022>= 16.0.1000.6 < 16.0.1135.216.0.1135.2
microsoftsql_server_2022>= 16.0.4003.1 < 16.0.4155.416.0.4155.4
msrcmicrosoft_sql_server_2016_for_x64-based_systems_service_pack_3
msrcmicrosoft_sql_server_2016_for_x64-based_systems_service_pack_3_azure_connect_fea
msrcmicrosoft_sql_server_2017_for_x64-based_systems
msrcmicrosoft_sql_server_2019_for_x64-based_systems
msrcmicrosoft_sql_server_2022_for_x64-based_systems
xmlsoftlibxml2>= 0 < 2.9.10+dfsg-5ubuntu0.20.04.92.9.10+dfsg-5ubuntu0.20.04.9
xmlsoftlibxml2>= 0 < 2.9.10+dfsg-5ubuntu0.20.04.82.9.10+dfsg-5ubuntu0.20.04.8
xmlsoftlibxml2>= 0 < 2.9.13+dfsg-1ubuntu0.62.9.13+dfsg-1ubuntu0.6
xmlsoftlibxml2>= 0 < 2.9.13+dfsg-1ubuntu0.52.9.13+dfsg-1ubuntu0.5

CVSS provenance

nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
osv7.8HIGH