CVE-2025-12100 MongoDB BI Connector ODBC driver installation via MSI may leave ACLs unset on custom installation directories

Incorrect Default Permissions vulnerability in MongoDB BI Connector ODBC driver allows Privilege Escalation.This issue affects BI Connector ODBC driver: from 1.0.0 through 1.4.6...

MongoDB BI Connector ODBC driver 安全漏洞

MongoDB is a document-oriented database management system from the U.S. company MongoDB. A security vulnerability exists in the MongoDB BI Connector ODBC driver versions 1.0.0 through 1.4.6, which stems from an improperly set default privilege that could lead to elevated privileges...

insightsoftware Spark JDBC 安全漏洞

insightsoftware Spark JDBC is a data connectivity driver from insightsoftware. It supports Spark access to multiple databases A security vulnerability exists in insightsoftware Spark JDBC version 2.6.21, which stems from malicious parameter injection that could lead to remote code execution...

The vulnerability of the Microsoft ODBC Driver for SQL Server’s dynamic layout library, related to integer overflow, allows an attacker to execute arbitrary code.

The vulnerability of the Microsoft ODBC Driver for SQL Server dynamic sorting library is related to a numerical overflow condition. Exploiting this vulnerability allows an attacker to execute arbitrary code remotely...

Microsoft ODBC Driver 安全漏洞

Microsoft ODBC Driver is a driver from Microsoft Corporation USA. It allows applications to access data in a database management system DBMS using SQL as the standard for accessing data. A security vulnerability exists in Microsoft ODBC Driver. An attacker could exploit the vulnerability to...

Microsoft ODBC Driver Security Vulnerability

Microsoft ODBC Driver is a driver from Microsoft. It allows applications to access data in a database management system DBMS using SQL as the standard for accessing data. A security vulnerability exists in the Microsoft WDAC ODBC Driver. The following products and versions are affected: Windows 1...

The vulnerability of the ODBC driver for Windows operating systems allows a hacker to execute arbitrary code.

The vulnerability of the ODBC driver for Windows operating systems is related to insufficient validation of input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

CVE-2023-36598

Microsoft WDAC ODBC Driver Remote Code Execution Vulnerability...

Microsoft ODBC Driver Security Vulnerability

Microsoft ODBC Driver is a driver from Microsoft. It allows applications to access data in a database management system DBMS using SQL as the standard for accessing data. A security vulnerability exists in Microsoft ODBC Driver. An attacker could exploit the vulnerability to remotely execute code...

CVE-2023-32811

In connectivity system driver, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07929848; Issue ID: ALPS07929848...

MediaTek Chip Buffer Error Vulnerability

MediaTek chips are a variety of MediaTek chips from MediaTek, a Chinese company. A security vulnerability exists in the MediaTek chips due to an improper input validation issue in the connectivity system driver, which may result in out-of-bounds writes...

CVE-2022-34734

Microsoft ODBC Driver Remote Code Execution Vulnerability...

PT-2022-5739 · Microsoft · Odbc Driver +1

Name of the Vulnerable Software and Affected Versions: Microsoft ODBC Driver affected versions not specified Description: The issue exists due to insufficient input validation in the Microsoft ODBC driver for the Windows operating system. This allows a remote attacker to execute arbitrary code. T...

PT-2022-5741 · Microsoft · Odbc Driver +1

Name of the Vulnerable Software and Affected Versions: Microsoft ODBC Driver affected versions not specified Description: The issue exists due to insufficient input validation in the Microsoft ODBC driver for the Windows operating system. This allows a remote attacker to execute arbitrary code,...