Lucene search

CVE-2024-37324

🗓️ 09 Jul 2024 17:20:15Reported by microsoftType

SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerabilit

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 15
Cvelist	CVE-2024-37324 SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability	9 Jul 202417:02	–	cvelist
Vulnrichment	CVE-2024-37324 SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability	9 Jul 202417:02	–	vulnrichment
Microsoft CVE	SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability	9 Jul 202407:00	–	mscve
NVD	CVE-2024-37324	9 Jul 202417:15	–	nvd
Microsoft KB	KB5040944 - Description of the security update for SQL Server 2016 SP3 Azure Connect Feature Pack: July 9, 2024	9 Jul 202407:00	–	mskb
Microsoft KB	KB5040946 - Description of the security update for SQL Server 2016 SP3 GDR: July 9, 2024	9 Jul 202407:00	–	mskb
Microsoft KB	KB5040948 - Description of the security update for SQL Server 2019 CU27: July 9, 2024	9 Jul 202407:00	–	mskb
Microsoft KB	KB5040942 - Description of the security update for SQL Server 2017 GDR: July 9, 2024	9 Jul 202407:00	–	mskb
Microsoft KB	KB5040940 - Description of the security update for SQL Server 2017 CU31: July 9, 2024	9 Jul 202407:00	–	mskb
Microsoft KB	KB5040936 - Description of the security update for SQL Server 2022 GDR: July 9, 2024	9 Jul 202407:00	–	mskb

Nvd

Vulners

Node

microsoft sql_server_2016Range<13.0.6441.1

microsoft sql_server_2016Range13.0.7000.253–13.0.7037.1

microsoft sql_server_2017Range<14.0.2056.2

microsoft sql_server_2017Range14.0.3456.2–14.0.3471.2

microsoft sql_server_2019Range<15.0.2116.2

microsoft sql_server_2019Range15.0.4375.4–15.0.4382.1

microsoft sql_server_2022Range<16.0.1121.4

microsoft sql_server_2022Range16.0.4125.3–16.0.4131.2

[
  {
    "vendor": "Microsoft",
    "product": "Microsoft SQL Server 2022 for (CU 13)",
    "platforms": [
      "Unknown"
    ],
    "versions": [
      {
        "version": "16.0.0",
        "lessThan": "16.0.4131.2",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft SQL Server 2019 for x64-based Systems (CU 27)",
    "platforms": [
      "Unknown"
    ],
    "versions": [
      {
        "version": "15.0.0",
        "lessThan": "15.0.4382.1",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft SQL Server 2017 (GDR)",
    "platforms": [
      "x64-based Systems"
    ],
    "versions": [
      {
        "version": "14.0.0",
        "lessThan": "14.0.2056.2",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft SQL Server 2019 (GDR)",
    "platforms": [
      "x64-based Systems"
    ],
    "versions": [
      {
        "version": "15.0.0",
        "lessThan": "15.0.2116.2",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft SQL Server 2016 Service Pack 3 (GDR)",
    "platforms": [
      "x64-based Systems"
    ],
    "versions": [
      {
        "version": "13.0.0",
        "lessThan": "13.0.6441.1",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft SQL Server 2016 Service Pack 3 Azure Connect Feature Pack",
    "platforms": [
      "x64-based Systems"
    ],
    "versions": [
      {
        "version": "13.0.0",
        "lessThan": "13.0.7037.1",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft SQL Server 2017 (CU 31)",
    "platforms": [
      "x64-based Systems"
    ],
    "versions": [
      {
        "version": "14.0.0",
        "lessThan": "14.0.3471.2",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft SQL Server 2022 (GDR)",
    "platforms": [
      "x64-based Systems"
    ],
    "versions": [
      {
        "version": "16.0.0",
        "lessThan": "16.0.1121.4",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  }
]

Source	Link
msrc	www.msrc.microsoft.com/update-guide/vulnerability/CVE-2024-37324

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

09 Jul 2024 17:15Current

9High risk

Vulners AI Score9

CVSS38.8

EPSS0.07256

SSVC

CWE-122