Lucene search
HistoryOct 10, 2023 - 6:15 p.m.
CVE-2023-36420
microsoft odbc driver sql server
remote code execution
vulnerability
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
8.1
Confidence
High
EPSS
0.001
Percentile
45.0%
Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability
Affected configurations
Node
microsoftodbc_driver_for_sql_serverRange17–17.10.5.1linux
ORmicrosoftodbc_driver_for_sql_serverRange17–17.10.5.1macos
ORmicrosoftodbc_driver_for_sql_serverRange17.0.1.1–17.10.5.1windows
ORmicrosoftodbc_driver_for_sql_serverRange18.0–18.3.2.1linux
ORmicrosoftodbc_driver_for_sql_serverRange18.0–18.3.2.1macos
ORmicrosoftodbc_driver_for_sql_serverRange18.0.1.1–18.3.2.1windows
ORmicrosoftsql_serverMatch2019x64
ORmicrosoftsql_serverMatch2022x64
Related
cvelist
cvelist
cve
cve
CVE-2023-36420
2023-10-10 18:15:12
prion
prion
Remote code execution
2023-10-10 18:15:00
mscve
mscve
Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability
2023-10-10 07:00:00
mskb
mskb
kaspersky
kaspersky
KLA61355 Multiple vulnerabilities in Microsoft SQL Server
2023-10-10 00:00:00
nessus
nessus
Security Updates for Microsoft SQL Server ODBC Driver (October 2023)
2023-10-13 00:00:00
ics
ics
Siemens Telecontrol Server Basic
2024-04-11 12:00:00
rapid7blog
rapid7blog
Patch Tuesday - October 2023
2023-10-10 20:34:57
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
8.1
Confidence
High
EPSS
0.001
Percentile
45.0%
Related for NVD:CVE-2023-36420