Microsoft Sql Server 2019 vulnerabilities

133 known vulnerabilities affecting microsoft/sql_server_2019.

Total CVEs

133

CISA KEV

Public exploits

Exploited in wild

Severity breakdown

CRITICAL2HIGH128MEDIUM3

Vulnerabilities

Page 3 of 7

CVE-2024-49017HIGHCVSS 8.8≥ 15.0.2000.5, < 15.0.2130.3≥ 15.0.4003.23, < 15.0.4410.12024-11-12

CVE-2024-49017 [HIGH] CWE-122 CVE-2024-49017: SQL Server Native Client Remote Code Execution Vulnerability SQL Server Native Client Remote Code Execution Vulnerability

nvd

CVE-2024-49001HIGHCVSS 8.8≥ 15.0.2000.5, < 15.0.2130.3≥ 15.0.4003.23, < 15.0.4410.12024-11-12

CVE-2024-49001 [HIGH] CWE-122 CVE-2024-49001: SQL Server Native Client Remote Code Execution Vulnerability SQL Server Native Client Remote Code Execution Vulnerability

nvd

CVE-2024-49006HIGHCVSS 8.8≥ 15.0.2000.5, < 15.0.2130.3≥ 15.0.4003.23, < 15.0.4410.12024-11-12

CVE-2024-49006 [HIGH] CWE-122 CVE-2024-49006: SQL Server Native Client Remote Code Execution Vulnerability SQL Server Native Client Remote Code Execution Vulnerability

nvd

CVE-2024-49009HIGHCVSS 8.8≥ 15.0.2000.5, < 15.0.2130.3≥ 15.0.4003.23, < 15.0.4410.12024-11-12

CVE-2024-49009 [HIGH] CWE-122 CVE-2024-49009: SQL Server Native Client Remote Code Execution Vulnerability SQL Server Native Client Remote Code Execution Vulnerability

nvd

CVE-2024-37980CRITICALCVSS 9.8≥ 15.0.2000.5, < 15.0.2120.1≥ 15.0.4003.23, < 15.0.4390.22024-09-10

CVE-2024-37980 [CRITICAL] CWE-269 CVE-2024-37980: Microsoft SQL Server Elevation of Privilege Vulnerability Microsoft SQL Server Elevation of Privilege Vulnerability

nvd

CVE-2024-37341CRITICALCVSS 9.8≥ 15.0.2000.5, < 15.0.2120.1≥ 15.0.4003.23, < 15.0.4390.22024-09-10

CVE-2024-37341 [CRITICAL] CWE-284 CVE-2024-37341: Microsoft SQL Server Elevation of Privilege Vulnerability Microsoft SQL Server Elevation of Privilege Vulnerability

nvd

CVE-2024-26191HIGHCVSS 8.8≥ 15.0.2000.5, < 15.0.2120.1≥ 15.0.4003.23, < 15.0.4390.22024-09-10

CVE-2024-26191 [HIGH] CWE-122 CVE-2024-26191: Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability

nvd

CVE-2024-37335HIGHCVSS 8.8≥ 15.0.2000.5, < 15.0.2120.1≥ 15.0.4003.23, < 15.0.4390.22024-09-10

CVE-2024-37335 [HIGH] CWE-122 CVE-2024-37335: Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability

nvd

CVE-2024-37339HIGHCVSS 8.8≥ 15.0.2000.5, < 15.0.2120.1≥ 15.0.4003.23, < 15.0.4390.22024-09-10

CVE-2024-37339 [HIGH] CWE-822 CVE-2024-37339: Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability

nvd

CVE-2024-37340HIGHCVSS 8.8≥ 15.0.2000.5, < 15.0.2120.1≥ 15.0.4003.23, < 15.0.4390.22024-09-10

CVE-2024-37340 [HIGH] CWE-822 CVE-2024-37340: Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability

nvd

CVE-2024-37338HIGHCVSS 8.8≥ 15.0.2000.5, < 15.0.2120.1≥ 15.0.4003.23, < 15.0.4390.22024-09-10

CVE-2024-37338 [HIGH] CWE-125 CVE-2024-37338: Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability

nvd

CVE-2024-43474HIGHCVSS 7.5≥ 15.0.2000.5, < 15.0.2120.12024-09-10

CVE-2024-43474 [HIGH] CWE-170 CVE-2024-43474: Microsoft SQL Server Information Disclosure Vulnerability Microsoft SQL Server Information Disclosure Vulnerability

nvd

CVE-2024-26186HIGHCVSS 8.8≥ 15.0.2000.5, < 15.0.2120.1≥ 15.0.4003.23, < 15.0.4390.22024-09-10

CVE-2024-26186 [HIGH] CWE-416 CVE-2024-26186: Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability

nvd

CVE-2024-37966HIGHCVSS 7.1≥ 15.0.2000.5, < 15.0.2120.1≥ 15.0.4003.23, < 15.0.4390.22024-09-10

CVE-2024-37966 [HIGH] CWE-125 CVE-2024-37966: Microsoft SQL Server Native Scoring Information Disclosure Vulnerability Microsoft SQL Server Native Scoring Information Disclosure Vulnerability

nvd

CVE-2024-37965HIGHCVSS 8.8≥ 15.0.2000.5, < 15.0.2120.1≥ 15.0.4003.23, < 15.0.4390.22024-09-10

CVE-2024-37965 [HIGH] CWE-20 CVE-2024-37965: Microsoft SQL Server Elevation of Privilege Vulnerability Microsoft SQL Server Elevation of Privilege Vulnerability

nvd

CVE-2024-37337MEDIUMCVSS 4.3≥ 15.0.2000.5, < 15.0.2120.1≥ 15.0.4003.23, < 15.0.4390.22024-09-10

CVE-2024-37337 [MEDIUM] CWE-197 CVE-2024-37337: Microsoft SQL Server Native Scoring Information Disclosure Vulnerability Microsoft SQL Server Native Scoring Information Disclosure Vulnerability

nvd

CVE-2024-37342MEDIUMCVSS 4.3≥ 15.0.2000.5, < 15.0.2120.1≥ 15.0.4003.23, < 15.0.4390.22024-09-10

CVE-2024-37342 [MEDIUM] CWE-125 CVE-2024-37342: Microsoft SQL Server Native Scoring Information Disclosure Vulnerability Microsoft SQL Server Native Scoring Information Disclosure Vulnerability

nvd

CVE-2024-35256HIGHCVSS 8.8fixed in 15.0.2116.2≥ 15.0.4375.4, < 15.0.4382.12024-07-09

CVE-2024-35256 [HIGH] CWE-122 CVE-2024-35256: SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability

nvd

CVE-2024-21308HIGHCVSS 8.8≥ 15.0.2000.5, < 15.0.2116.2≥ 15.0.4003.23, < 15.0.4382.12024-07-09

CVE-2024-21308 [HIGH] CWE-416 CVE-2024-21308: SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability

nvd

CVE-2024-37327HIGHCVSS 8.8fixed in 15.0.2116.2≥ 15.0.4375.4, < 15.0.4382.12024-07-09

CVE-2024-37327 [HIGH] CWE-122 CVE-2024-37327: SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability

nvd

← Previous3 / 7Next →