Microsoft Sql Server 2022 vulnerabilities

105 known vulnerabilities affecting microsoft/sql_server_2022.

Total CVEs

105

CISA KEV

Public exploits

Exploited in wild

Severity breakdown

CRITICAL2HIGH100MEDIUM3

Vulnerabilities

Page 2 of 6

CVE-2024-37335HIGHCVSS 8.8≥ 16.0.1000.6, < 16.0.1125.1≥ 16.0.4003.1, < 16.0.4140.32024-09-10

CVE-2024-37335 [HIGH] CWE-122 CVE-2024-37335: Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability

nvd

CVE-2024-37339HIGHCVSS 8.8≥ 16.0.1000.6, < 16.0.1125.1≥ 16.0.4003.1, < 16.0.4140.32024-09-10

CVE-2024-37339 [HIGH] CWE-822 CVE-2024-37339: Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability

nvd

CVE-2024-37340HIGHCVSS 8.8≥ 16.0.1000.6, < 16.0.1125.1≥ 16.0.4003.1, < 16.0.4140.32024-09-10

CVE-2024-37340 [HIGH] CWE-822 CVE-2024-37340: Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability

nvd

CVE-2024-37338HIGHCVSS 8.8≥ 16.0.1000.6, < 16.0.1125.1≥ 16.0.4003.1, < 16.0.4140.32024-09-10

CVE-2024-37338 [HIGH] CWE-125 CVE-2024-37338: Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability

nvd

CVE-2024-26186HIGHCVSS 8.8≥ 16.0.1000.6, < 16.0.1125.1≥ 16.0.4003.1, < 16.0.4140.32024-09-10

CVE-2024-26186 [HIGH] CWE-416 CVE-2024-26186: Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability

nvd

CVE-2024-37966HIGHCVSS 7.1≥ 16.0.1000.6, < 16.0.1125.1≥ 16.0.4003.1, < 16.0.4140.32024-09-10

CVE-2024-37966 [HIGH] CWE-125 CVE-2024-37966: Microsoft SQL Server Native Scoring Information Disclosure Vulnerability Microsoft SQL Server Native Scoring Information Disclosure Vulnerability

nvd

CVE-2024-37965HIGHCVSS 8.8≥ 16.0.1000.6, < 16.0.1125.1≥ 16.0.4003.1, < 16.0.4140.32024-09-10

CVE-2024-37965 [HIGH] CWE-20 CVE-2024-37965: Microsoft SQL Server Elevation of Privilege Vulnerability Microsoft SQL Server Elevation of Privilege Vulnerability

nvd

CVE-2024-37337MEDIUMCVSS 4.3≥ 16.0.1000.6, < 16.0.1125.1≥ 16.0.4003.1, < 16.0.4140.32024-09-10

CVE-2024-37337 [HIGH] CWE-197 CVE-2024-37337: Microsoft SQL Server Native Scoring Information Disclosure Vulnerability Microsoft SQL Server Native Scoring Information Disclosure Vulnerability

nvd

CVE-2024-37342MEDIUMCVSS 4.3≥ 16.0.1000.6, < 16.0.1125.1≥ 16.0.4003.1, < 16.0.4140.32024-09-10

CVE-2024-37342 [HIGH] CWE-125 CVE-2024-37342: Microsoft SQL Server Native Scoring Information Disclosure Vulnerability Microsoft SQL Server Native Scoring Information Disclosure Vulnerability

nvd

CVE-2024-35256HIGHCVSS 8.8fixed in 16.0.1121.4≥ 16.0.4125.3, < 16.0.4131.22024-07-09

CVE-2024-35256 [HIGH] CWE-122 CVE-2024-35256: SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability

nvd

CVE-2024-21308HIGHCVSS 8.8≥ 16.0.1000.6, < 16.0.1121.4≥ 16.0.4003.1, < 16.0.4131.22024-07-09

CVE-2024-21308 [HIGH] CWE-416 CVE-2024-21308: SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability

nvd

CVE-2024-37327HIGHCVSS 8.8fixed in 16.0.1121.4≥ 16.0.4125.3, < 16.0.4131.22024-07-09

CVE-2024-37327 [HIGH] CWE-122 CVE-2024-37327: SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability

nvd

CVE-2024-37328HIGHCVSS 8.8fixed in 16.0.1121.4≥ 16.0.4125.3, < 16.0.4131.22024-07-09

CVE-2024-37328 [HIGH] CWE-122 CVE-2024-37328: SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability

nvd

CVE-2024-38087HIGHCVSS 8.8fixed in 16.0.1121.4≥ 16.0.4125.3, < 16.0.4131.22024-07-09

CVE-2024-38087 [HIGH] CWE-415 CVE-2024-38087: SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability

nvd

CVE-2024-37334HIGHCVSS 8.8fixed in 16.0.1121.4≥ 16.0.4125.3, < 16.0.4131.22024-07-09

CVE-2024-37334 [HIGH] CWE-122 CVE-2024-37334: Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability

nvd

CVE-2024-37324HIGHCVSS 8.8fixed in 16.0.1121.4≥ 16.0.4125.3, < 16.0.4131.22024-07-09

CVE-2024-37324 [HIGH] CWE-122 CVE-2024-37324: SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability

nvd

CVE-2024-21333HIGHCVSS 8.8≥ 16.0.1000.6, < 16.0.1121.4≥ 16.0.4003.1, < 16.0.4131.22024-07-09

CVE-2024-21333 [HIGH] CWE-122 CVE-2024-21333: SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability

nvd

CVE-2024-21415HIGHCVSS 8.8≥ 16.0.1000.6, < 16.0.1121.4≥ 16.0.4003.1, < 16.0.4131.22024-07-09

CVE-2024-21415 [HIGH] CWE-122 CVE-2024-21415: SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability

nvd

CVE-2024-37332HIGHCVSS 8.8fixed in 16.0.1121.4≥ 16.0.4125.3, < 16.0.4131.22024-07-09

CVE-2024-37332 [HIGH] CWE-122 CVE-2024-37332: SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability

nvd

CVE-2024-21428HIGHCVSS 8.8≥ 16.0.1000.6, < 16.0.1121.4≥ 16.0.4003.1, < 16.0.4131.22024-07-09

CVE-2024-21428 [HIGH] CWE-190 CVE-2024-21428: SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability

nvd

← Previous2 / 6Next →