Lucene search

CVE-2023-23384

🗓️ 11 Apr 2023 21:18:15Reported by microsoftType

Microsoft SQL Server Remote Code Execution Vulnerabilit

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 22
Cvelist	CVE-2023-23384 Microsoft SQL Server Remote Code Execution Vulnerability	11 Apr 202319:13	–	cvelist
Tenable Nessus	Security Updates for Microsoft SQL Server (April 2023)	12 May 202300:00	–	nessus
Tenable Nessus	Security Updates for Microsoft SQL Server (April 2023)	12 May 202300:00	–	nessus
Microsoft CVE	Microsoft SQL Server Remote Code Execution Vulnerability	11 Apr 202307:00	–	mscve
NVD	CVE-2023-23384	11 Apr 202321:15	–	nvd
Prion	Remote code execution	11 Apr 202321:15	–	prion
Kaspersky	KLA48844 Multiple vulnerabilities in Microsoft SQL Server	11 Apr 202300:00	–	kaspersky
Kaspersky	KLA48842 Multiple vulnerabilities in Microsoft Products (ESU)	11 Apr 202300:00	–	kaspersky
Microsoft KB	KB5021112 - Description of the security update for SQL Server 2008 R2 SP3 GDR: February 14, 2023	11 Apr 202307:00	–	mskb
Microsoft KB	KB5020863 - Description of the security update for SQL Server 2008 SP4 GDR: February 14, 2023	11 Apr 202307:00	–	mskb

Nvd

Vulners

Node

microsoft sql_serverMatch2008r2_sp3

microsoft sql_serverMatch2008sp4x64

microsoft sql_serverMatch2012sp4

microsoft sql_serverMatch2014sp3

microsoft sql_serverMatch2016sp3x64

microsoft sql_serverMatch2017x64

microsoft sql_serverMatch2019x64

microsoft sql_serverMatch2022x64

[
  {
    "vendor": "Microsoft",
    "product": "Microsoft SQL Server 2008 Service Pack 4 (QFE)",
    "platforms": [
      "32-bit Systems",
      "x64-based Systems"
    ],
    "versions": [
      {
        "version": "10.0.0",
        "lessThan": "10.0.6814.4",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft SQL Server 2012 Service Pack 4 (QFE)",
    "platforms": [
      "32-bit Systems"
    ],
    "versions": [
      {
        "version": "11.0.0",
        "lessThan": "11.0.7512.11",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft SQL Server 2012 for x64-based Systems Service Pack 4 (QFE)",
    "platforms": [
      "x64-based Systems"
    ],
    "versions": [
      {
        "version": "11.0.0",
        "lessThan": "11.0.7512.11",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft SQL Server 2017 (GDR)",
    "platforms": [
      "x64-based Systems"
    ],
    "versions": [
      {
        "version": "14.0.0",
        "lessThan": "14.0.2047.8",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft SQL Server 2008 R2 Service Pack 3 (QFE)",
    "platforms": [
      "32-bit Systems",
      "x64-based Systems"
    ],
    "versions": [
      {
        "version": "10.0.0",
        "lessThan": "10.50.6785.2",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft SQL Server 2014 Service Pack 3 (GDR)",
    "platforms": [
      "x64-based Systems",
      "32-bit Systems"
    ],
    "versions": [
      {
        "version": "12.0.0",
        "lessThan": "12.0.6444.4",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft SQL Server 2014 Service Pack 3 (CU 4)",
    "platforms": [
      "32-bit Systems",
      "x64-based Systems"
    ],
    "versions": [
      {
        "version": "12.0.0",
        "lessThan": "12.0.6174.8",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft SQL Server 2019 (GDR)",
    "platforms": [
      "x64-based Systems"
    ],
    "versions": [
      {
        "version": "15.0.0",
        "lessThan": "15.0.2101.7",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft SQL Server 2016 Service Pack 3 (GDR)",
    "platforms": [
      "x64-based Systems"
    ],
    "versions": [
      {
        "version": "13.0.0",
        "lessThan": "13.0.6430.49",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft SQL Server 2016 Service Pack 3 Azure Connect Feature Pack",
    "platforms": [
      "x64-based Systems"
    ],
    "versions": [
      {
        "version": "13.0.0",
        "lessThan": "13.0.7024.30",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft SQL Server 2017 (CU 31)",
    "platforms": [
      "x64-based Systems"
    ],
    "versions": [
      {
        "version": "14.0.0",
        "lessThan": "14.0.3460.9",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft SQL Server 2019 (CU 18)",
    "platforms": [
      "x64-based Systems"
    ],
    "versions": [
      {
        "version": "15.0.0",
        "lessThan": "15.0.4280.7",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft SQL Server 2022 (GDR)",
    "platforms": [
      "x64-based Systems"
    ],
    "versions": [
      {
        "version": "16.0.0",
        "lessThan": "16.0.1050.5",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  }
]

Source	Link
msrc	www.msrc.microsoft.com/update-guide/vulnerability/CVE-2023-23384

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

11 Apr 2023 21:15Current

7.6High risk

Vulners AI Score7.6

CVSS37.3

EPSS0.00788

CWE-122