Lucene search
HistorySep 13, 2022 - 7:15 p.m.
CVE-2022-34733
microsoft wdac sql server remote code execution vulnerability
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
0.017
Percentile
87.9%
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
Affected configurations
Node
microsoftwindows_10Match-
ORmicrosoftwindows_10Match20h2
ORmicrosoftwindows_10Match21h1
ORmicrosoftwindows_10Match21h2
ORmicrosoftwindows_10Match1607
ORmicrosoftwindows_10Match1809
ORmicrosoftwindows_11Match-arm64
ORmicrosoftwindows_11Match-x64
ORmicrosoftwindows_7Match-sp1
ORmicrosoftwindows_8.1Match-
ORmicrosoftwindows_rt_8.1Match-
ORmicrosoftwindows_server_2008Match-sp2
ORmicrosoftwindows_server_2008Matchr2sp1x64
ORmicrosoftwindows_server_2012Match-
ORmicrosoftwindows_server_2012Matchr2
ORmicrosoftwindows_server_2016Match-
ORmicrosoftwindows_server_2019Match-
ORmicrosoftwindows_server_2022Match-
ORmicrosoftwindows_server_2022Match-azure
| Vendor | Product | Version | CPE |
|---|---|---|---|
| microsoft | windows_10 | - | cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:* |
| microsoft | windows_10 | 20h2 | cpe:2.3:o:microsoft:windows_10:20h2:*:*:*:*:*:*:* |
| microsoft | windows_10 | 21h1 | cpe:2.3:o:microsoft:windows_10:21h1:*:*:*:*:*:*:* |
| microsoft | windows_10 | 21h2 | cpe:2.3:o:microsoft:windows_10:21h2:*:*:*:*:*:*:* |
| microsoft | windows_10 | 1607 | cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:* |
| microsoft | windows_10 | 1809 | cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:* |
| microsoft | windows_11 | - | cpe:2.3:o:microsoft:windows_11:-:*:*:*:*:*:arm64:* |
| microsoft | windows_11 | - | cpe:2.3:o:microsoft:windows_11:-:*:*:*:*:*:x64:* |
| microsoft | windows_7 | - | cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:* |
| microsoft | windows_8.1 | - | cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:* |
Related
cve
cve
CVE-2022-34733
2022-09-13 19:15:10
cvelist
cvelist
prion
prion
Remote code execution
2022-09-13 19:15:00
mscve
mscve
nessus
nessus
KB5017371: Windows Server 2008 Security Update (September 2022)
2022-09-13 00:00:00
KB5017377: Windows Server 2012 Security Update (September 2022)
2022-09-13 00:00:00
KB5017373: Windows Server 2008 R2 Security Update (September 2022)
2022-09-13 00:00:00
mskb
mskb
September 13, 2022โKB5017371 (Security-only update)
2022-09-13 07:00:00
September 13, 2022โKB5017358 (Monthly Rollup)
2022-09-13 07:00:00
September 13, 2022โKB5017327 (OS Build 10240.19444)
2022-09-13 07:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB5017327)
2022-09-14 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5017361)
2022-09-14 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5017367)
2022-09-14 00:00:00
kaspersky
kaspersky
KLA19249 Multiple vulnerabilities in Microsoft Products (ESU)
2022-09-13 00:00:00
KLA19245 Multiple vulnerabilities in Microsoft Windows
2022-09-13 00:00:00
rapid7blog
rapid7blog
Patch Tuesday - September 2022
2022-09-13 20:11:08
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
0.017
Percentile
87.9%
Related for NVD:CVE-2022-34733