Lucene search

CVE-2024-35272 SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability

🗓️ 09 Jul 2024 17:44:02Reported by microsoftType

SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerabilit

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 16
Vulnrichment	CVE-2024-35272 SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability	9 Jul 202417:02	–	vulnrichment
NVD	CVE-2024-35272	9 Jul 202417:15	–	nvd
CVE	CVE-2024-35272	9 Jul 202417:15	–	cve
Microsoft CVE	SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability	9 Jul 202407:00	–	mscve
Kaspersky	KLA70414 Multiple vulnerabilities in Microsoft Developer Tools	9 Jul 202400:00	–	kaspersky
Microsoft KB	KB5040946 - Description of the security update for SQL Server 2016 SP3 GDR: July 9, 2024	9 Jul 202407:00	–	mskb
Microsoft KB	KB5040944 - Description of the security update for SQL Server 2016 SP3 Azure Connect Feature Pack: July 9, 2024	9 Jul 202407:00	–	mskb
Microsoft KB	KB5040936 - Description of the security update for SQL Server 2022 GDR: July 9, 2024	9 Jul 202407:00	–	mskb
Microsoft KB	KB5040948 - Description of the security update for SQL Server 2019 CU27: July 9, 2024	9 Jul 202407:00	–	mskb
Microsoft KB	KB5040940 - Description of the security update for SQL Server 2017 CU31: July 9, 2024	9 Jul 202407:00	–	mskb

[
  {
    "vendor": "Microsoft",
    "product": "Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8)",
    "platforms": [
      "Unknown"
    ],
    "versions": [
      {
        "version": "15.9.0",
        "lessThan": "15.9.66",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft Visual Studio 2019 version 16.11 (includes 16.0 - 16.10)",
    "platforms": [
      "Unknown"
    ],
    "versions": [
      {
        "version": "16.11.0",
        "lessThan": "16.11.40",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft Visual Studio 2022 version 17.6",
    "platforms": [
      "Unknown"
    ],
    "versions": [
      {
        "version": "17.6.0",
        "lessThan": "17.6.19",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft Visual Studio 2022 version 17.8",
    "platforms": [
      "Unknown"
    ],
    "versions": [
      {
        "version": "17.8.0",
        "lessThan": "17.8.14",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft Visual Studio 2022 version 17.10",
    "platforms": [
      "Unknown"
    ],
    "versions": [
      {
        "version": "17.10",
        "lessThan": "17.10.7",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft Visual Studio 2022 version 17.11",
    "platforms": [
      "Unknown"
    ],
    "versions": [
      {
        "version": "17.11",
        "lessThan": "17.11.3",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft SQL Server 2019 (GDR)",
    "platforms": [
      "x64-based Systems"
    ],
    "versions": [
      {
        "version": "15.0.0",
        "lessThan": "15.0.2116.2",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft SQL Server 2016 Service Pack 3 (GDR)",
    "platforms": [
      "x64-based Systems"
    ],
    "versions": [
      {
        "version": "13.0.0",
        "lessThan": "13.0.6441.1",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft SQL Server 2016 Service Pack 3 Azure Connect Feature Pack",
    "platforms": [
      "x64-based Systems"
    ],
    "versions": [
      {
        "version": "13.0.0",
        "lessThan": "13.0.7037.1",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft SQL Server 2017 (CU 31)",
    "platforms": [
      "x64-based Systems"
    ],
    "versions": [
      {
        "version": "14.0.0",
        "lessThan": "14.0.3471.2",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft SQL Server 2022 (GDR)",
    "platforms": [
      "x64-based Systems"
    ],
    "versions": [
      {
        "version": "16.0.0",
        "lessThan": "16.0.1121.4",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft SQL Server 2019 for x64-based Systems (CU 27)",
    "platforms": [
      "Unknown"
    ],
    "versions": [
      {
        "version": "15.0.0",
        "lessThan": "15.0.4382.1",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft SQL Server 2022 for (CU 13)",
    "platforms": [
      "Unknown"
    ],
    "versions": [
      {
        "version": "16.0.0",
        "lessThan": "16.0.4131.2",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  }
]

Source	Link
msrc	www.msrc.microsoft.com/update-guide/vulnerability/CVE-2024-35272

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

09 Jul 2024 17:02Current

CVSS38.8

EPSS0.07804

CWE-122