Lucene search

K
osvGoogleOSV:BIT-DOTNET-2024-0056
HistoryMar 06, 2024 - 10:51 a.m.

BIT-dotnet-2024-0056

2024-03-0610:51:56
Google
osv.dev
13
microsoft
sql data provider
security
bypass
vulnerability

8.7 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N

7.8 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

47.9%

Microsoft.Data.SqlClient and System.Data.SqlClient SQL Data Provider Security Feature Bypass Vulnerability

8.7 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N

7.8 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

47.9%