Microsoft Sql Server 2022 vulnerabilities

120 known vulnerabilities affecting microsoft/microsoft_sql_server_2022.

Total CVEs

120

CISA KEV

Public exploits

Exploited in wild

Severity breakdown

CRITICAL2HIGH114MEDIUM4

Vulnerabilities

Page 6 of 6

CVE-2024-29046HIGHCVSS 8.8≥ 16.0.0, < 16.0.1115.12024-04-09

CVE-2024-29046 [HIGH] CWE-122 CVE-2024-29046: Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability

nvd

CVE-2024-29982HIGHCVSS 8.8≥ 16.0.0, < 16.0.1115.12024-04-09

CVE-2024-29982 [HIGH] CWE-122 CVE-2024-29982: Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability

nvd

CVE-2024-28945HIGHCVSS 8.8≥ 16.0.0, < 16.0.1115.12024-04-09

CVE-2024-28945 [HIGH] CWE-191 CVE-2024-28945: Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability

nvd

CVE-2024-28906HIGHCVSS 8.8≥ 16.0.0, < 16.0.1115.12024-04-09

CVE-2024-28906 [HIGH] CWE-122 CVE-2024-28906: Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability

nvd

CVE-2024-28941HIGHCVSS 8.8≥ 16.0.0, < 16.0.1115.12024-04-09

CVE-2024-28941 [HIGH] CWE-122 CVE-2024-28941: Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

nvd

CVE-2024-28915HIGHCVSS 8.8≥ 16.0.0, < 16.0.1115.12024-04-09

CVE-2024-28915 [HIGH] CWE-122 CVE-2024-28915: Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability

nvd

CVE-2024-29985HIGHCVSS 8.8≥ 16.0.0, < 16.0.1115.12024-04-09

CVE-2024-29985 [HIGH] CWE-122 CVE-2024-29985: Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability

nvd

CVE-2024-0056HIGHCVSS 8.7≥ 16.0.0, < 16.0.1110.1fixed in 16.0.4100.12024-01-09

CVE-2024-0056 [HIGH] CWE-319 CVE-2024-0056: Microsoft.Data.SqlClient and System.Data.SqlClient SQL Data Provider Security Feature Bypass Vulnera Microsoft.Data.SqlClient and System.Data.SqlClient SQL Data Provider Security Feature Bypass Vulnerability

nvd

CVE-2023-36730HIGHCVSS 7.8≥ 16.0.0, < 16.0.1105.1≥ 15.0.0, < 16.0.4080.12023-10-10

CVE-2023-36730 [HIGH] CWE-122 CVE-2023-36730: Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

nvd

CVE-2023-36420HIGHCVSS 7.8≥ 16.0.0, < 16.0.1105.1≥ 15.0.0, < 16.0.4080.12023-10-10

CVE-2023-36420 [HIGH] CWE-415 CVE-2023-36420: Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

nvd

CVE-2023-36417HIGHCVSS 7.8≥ 16.0.0, < 16.0.1105.1≥ 15.0.0, < 16.0.4080.12023-10-10

CVE-2023-36417 [HIGH] CWE-122 CVE-2023-36417: Microsoft SQL OLE DB Remote Code Execution Vulnerability Microsoft SQL OLE DB Remote Code Execution Vulnerability

nvd

CVE-2023-36785HIGHCVSS 7.8≥ 16.0.0, < 16.0.1105.1≥ 15.0.0, < 16.0.4080.12023-10-10

CVE-2023-36785 [HIGH] CWE-191 CVE-2023-36785: Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

nvd

CVE-2023-36728MEDIUMCVSS 5.5≥ 15.0.0, < 16.0.4080.1≥ 16.0.0, < 16.0.1105.12023-10-10

CVE-2023-36728 [MEDIUM] CWE-125 CVE-2023-36728: Microsoft SQL Server Denial of Service Vulnerability Microsoft SQL Server Denial of Service Vulnerability

nvd

CVE-2023-38169HIGHCVSS 8.8≥ 15.0.0, < 16.0.4053.32023-08-08

CVE-2023-38169 [HIGH] CWE-416 CVE-2023-38169: Microsoft SQL OLE DB Remote Code Execution Vulnerability Microsoft SQL OLE DB Remote Code Execution Vulnerability

nvd

CVE-2023-23384HIGHCVSS 7.3≥ 16.0.0, < 16.0.1050.52023-04-11

CVE-2023-23384 [HIGH] CWE-122 CVE-2023-23384: Microsoft SQL Server Remote Code Execution Vulnerability Microsoft SQL Server Remote Code Execution Vulnerability

nvd

CVE-2023-21705HIGHCVSS 8.8≥ 16.0.0, < 16.0.1050.52023-02-14

CVE-2023-21705 [HIGH] CWE-321 CVE-2023-21705: Microsoft SQL Server Remote Code Execution Vulnerability Microsoft SQL Server Remote Code Execution Vulnerability

nvd

CVE-2023-21704HIGHCVSS 7.8≥ 16.0.0, < 16.0.1050.52023-02-14

CVE-2023-21704 [HIGH] CWE-190 CVE-2023-21704: Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

nvd

CVE-2023-21718HIGHCVSS 7.8≥ 16.0.0, < 16.0.1050.52023-02-14

CVE-2023-21718 [HIGH] CWE-191 CVE-2023-21718: Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

nvd

CVE-2023-21528HIGHCVSS 7.8≥ 16.0.0, < 16.0.1050.52023-02-14

CVE-2023-21528 [HIGH] CWE-122 CVE-2023-21528: Microsoft SQL Server Remote Code Execution Vulnerability Microsoft SQL Server Remote Code Execution Vulnerability

nvd

CVE-2023-21713HIGHCVSS 8.8≥ 16.0.0, < 16.0.1050.52023-02-14

CVE-2023-21713 [HIGH] CWE-502 CVE-2023-21713: Microsoft SQL Server Remote Code Execution Vulnerability Microsoft SQL Server Remote Code Execution Vulnerability

nvd

← Previous6 / 6