EUVD-2023-25872

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

Microsoft SQL Server vulnerability allows remote code execution, posing significant security risks.

Reporter	Title	Published	Views	Family All 28
ATTACKERKB	CVE-2023-21705	14 Feb 202320:15	–	attackerkb
Circl	CVE-2023-21705	14 Feb 202322:35	–	circl
CNNVD	Microsoft SQL Server 安全漏洞	14 Feb 202300:00	–	cnnvd
CVE	CVE-2023-21705	14 Feb 202319:32	–	cve
Cvelist	CVE-2023-21705 Microsoft SQL Server Remote Code Execution Vulnerability	14 Feb 202319:32	–	cvelist
Microsoft KB	KB5021037 - Description of the security update for SQL Server 2014 SP3 GDR: February 14, 2023	11 Apr 202307:00	–	mskb
Microsoft KB	KB5021045 - Description of the security update for SQL Server 2014 SP3 CU4: February 14, 2023	11 Apr 202307:00	–	mskb
Microsoft KB	KB5021123 - Description of the security update for SQL Server 2012 SP4 GDR: February 14, 2023	11 Apr 202307:00	–	mskb
Microsoft KB	KB5021124 - Description of the security update for SQL Server 2019 CU18: February 14, 2023	11 Apr 202307:00	–	mskb
Microsoft KB	KB5021125 - Description of the security update for SQL Server 2019 GDR: February 14, 2023	11 Apr 202307:00	–	mskb

[
  {
    "enisaIdVendor": [
      {
        "id": "bd0c4535-7469-32f4-9296-37f8d684836b",
        "vendor": {
          "name": "Microsoft"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "0754b2f8-b52c-3dd1-afd4-e9540f8bb7f2",
        "product": {
          "name": "Microsoft SQL Server 2012 Service Pack 4 (QFE)"
        },
        "product_version": "11.0.0 <11.0.7512.11"
      },
      {
        "id": "0b64e003-737c-3c1e-bd98-b53c2cec6f9c",
        "product": {
          "name": "Microsoft SQL Server 2022 (GDR)"
        },
        "product_version": "16.0.0 <16.0.1050.5"
      },
      {
        "id": "1b692ea1-aa97-37f1-a779-77befe9b7894",
        "product": {
          "name": "Microsoft SQL Server 2014 Service Pack 3 (GDR)"
        },
        "product_version": "12.0.0 <12.0.6444.4"
      },
      {
        "id": "3f220ea1-f0e8-375f-9978-edd4bb15332f",
        "product": {
          "name": "Microsoft SQL Server 2017 (CU 31)"
        },
        "product_version": "14.0.0 <14.0.3460.9"
      },
      {
        "id": "6c1c1559-ef18-3447-8434-17e3ea54d3c3",
        "product": {
          "name": "Microsoft SQL Server 2019 (CU 18)"
        },
        "product_version": "15.0.0 <15.0.4280.7"
      },
      {
        "id": "88172891-650d-3713-8c1e-6b622764f590",
        "product": {
          "name": "Microsoft SQL Server 2012 for x64-based Systems Service Pack 4 (QFE)"
        },
        "product_version": "11.0.0 <11.0.7512.11"
      },
      {
        "id": "89b5ea8d-d682-3287-9ee8-7b267e33ead4",
        "product": {
          "name": "Microsoft SQL Server 2016 Service Pack 3 (GDR)"
        },
        "product_version": "13.0.0 <13.0.6430.49"
      },
      {
        "id": "8ee76e2a-2f75-3db1-ad05-fc5d32f84f67",
        "product": {
          "name": "Microsoft SQL Server 2014 Service Pack 3 (CU 4)"
        },
        "product_version": "12.0.0 <12.0.6174.8"
      },
      {
        "id": "a7a160f9-d6a7-3019-b074-f16f38ed930d",
        "product": {
          "name": "Microsoft SQL Server 2017 (GDR)"
        },
        "product_version": "14.0.0 <14.0.2047.8"
      },
      {
        "id": "b7bac361-9eb0-3ea9-8ae9-fb57687965e6",
        "product": {
          "name": "Microsoft SQL Server 2016 Service Pack 3 Azure Connect Feature Pack"
        },
        "product_version": "13.0.0 <13.0.7024.30"
      },
      {
        "id": "f201cf99-9239-3b86-b306-dc24aef49f72",
        "product": {
          "name": "Microsoft SQL Server 2019 (GDR)"
        },
        "product_version": "15.0.0 <15.0.2101.7"
      }
    ]
  }
]

Source	Link
msrc	www.msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21705

03 Oct 2025 20:07Current

8.5High risk

Vulners AI Score8.5

CVSS 3.18.8

EPSS0.00735