KLA61355 Multiple vulnerabilities in Microsoft SQL Server

🗓️ 10 Oct 2023 00:00:00Reported by Kaspersky LabType

kaspersky🔗 threats.kaspersky.com👁 95 Views

Multiple vulnerabilities in Microsoft SQL Server, high severity. Malicious users can execute arbitrary code and cause denial of service. Affected products include Microsoft SQL Server 2014, 2016, & 2019, ODBC & OLE DB Drivers for various systems. ACE impact. Install updates from Windows Update for solution

Reporter	Title	Published	Views	Family All 72
Circl	CVE-2023-36417	10 Oct 202322:16	–	circl
Circl	CVE-2023-36728	19 Oct 202309:31	–	circl
Circl	CVE-2023-36785	14 Apr 202522:53	–	circl
CNNVD	Microsoft ODBC Driver Security Vulnerability	10 Oct 202300:00	–	cnnvd
CNNVD	Microsoft ODBC Driver Security Vulnerability	10 Oct 202300:00	–	cnnvd
CNNVD	Microsoft SQL Server Security Vulnerability	10 Oct 202300:00	–	cnnvd
CNNVD	Microsoft ODBC Driver Security Vulnerability	10 Oct 202300:00	–	cnnvd
CNNVD	Microsoft ODBC Driver Security Vulnerability	10 Oct 202300:00	–	cnnvd
Citrix	Provisioning 2203 : Citrix PVS breaks with Microsoft OLEDB driver v19	1 Nov 202300:00	–	citrix
CVE	CVE-2023-36417	10 Oct 202317:08	–	cve

Source	Link
msrc	www.msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36730
msrc	www.msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36728
msrc	www.msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36420
msrc	www.msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36417
msrc	www.msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36785
threats	www.threats.kaspersky.com/en/product/Microsoft-SQL-Server/
threats	www.threats.kaspersky.com/en/product/Microsoft-Windows/
threats	www.threats.kaspersky.com/en/product/Microsoft-Azure/
support	www.support.microsoft.com/kb/5029184
support	www.support.microsoft.com/kb/5029185

26 Mar 2025 00:00Current

8.2High risk

Vulners AI Score8.2

CVSS 3.17.8

EPSS0.0049

SSVC