55 matches found
EUVD-2026-29079
Corteza contains a SQL injection vulnerability in its Microsoft SQL Server MSSQL backend when filtering Compose records by the meta field.This issue affects corteza: 2024.9.8...
Microsoft SQL Server 安全漏洞
Microsoft SQL Server is a large-scale commercial database system developed by Microsoft Corporation, used under the Microsoft Windows operating system. There are security vulnerabilities in Microsoft SQL Server. Attackers can exploit these vulnerabilities to gain higher privileges. The following...
CVE-2025-62575 Mirion Medical EC2 Software NMIS BioDose Incorrect Permission Assignment for Critical Resource
NMIS/BioDose V22.02 and previous versions rely on a Microsoft SQL Server database. The SQL user account 'nmdbuser' and other created accounts by default have the sysadmin role. This can lead to remote code execution through the use of certain built-in stored procedures...
KLA89272 SUI vulnerability in Microsoft SQL Server
A spoofing vulnerability was found in Microsoft SQL Server. Malicious users can exploit this vulnerability to spoof user interface, bypass security restrictions. Original advisories CVE-2025-59250 Related products Microsoft-SQL-Server CVE list CVE-2025-59250 critical Solution Install necessary...
CVE-2025-55227
CVE-2025-55227 is an Elevation of Privilege vulnerability in Microsoft SQL Server caused by improper neutralization of special elements in a command (command injection). The CVE entry notes that an authenticated, network-connected attacker can leverage this to elevate privileges. Microsoft adviso...
KB5065220 - Description of the security update for SQL Server 2022 CU20: September 9, 2025
KB5065220 - Description of the security update for SQL Server 2022 CU20: September 9, 2025 Summary Improvements and fixes included in this update How to obtain and install the update How to obtain or download the latest cumulative update package for Linux More information File information...
MAL-2025-38653 Malicious code in vscode-mssql (npm)
The package vscode-mssql was found to contain malicious code...
Vulnerabilities fixed in Microsoft SQL Server
Microsoft has fixed vulnerabilities in SQL Server. The vulnerabilities are related to improper access management and SQL injection, which allows authorized attackers to escalate privileges within a network. This can lead to unauthorized access and manipulation of sensitive data. The vulnerabiliti...
CVE-2025-47954 Microsoft SQL Server Elevation of Privilege Vulnerability
...
CVE-2025-49759 Microsoft SQL Server Elevation of Privilege Vulnerability
...
CVE-2025-24999 Microsoft SQL Server Elevation of Privilege Vulnerability
...
CVE-2025-49758 Microsoft SQL Server Elevation of Privilege Vulnerability
...
Microsoft SQL Server Elevation of Privilege Vulnerability
Improper access control in SQL Server allows an authorized attacker to elevate privileges over a network...
KB5063762 - Description of the security update for SQL Server 2016 SP3 GDR: August 12, 2025
KB5063762 - Description of the security update for SQL Server 2016 SP3 GDR: August 12, 2025 Summary Improvements and fixes included in this update How to obtain and install the update More information File information Information about protection and security Summary This security update contains...
KB5063757 - Description of the security update for SQL Server 2019 CU32: August 12, 2025
KB5063757 - Description of the security update for SQL Server 2019 CU32: August 12, 2025 Summary Improvements and fixes included in this update How to obtain and install the update How to obtain or download the latest cumulative update package for Linux More information File information Informati...
KB5063758 - Description of the security update for SQL Server 2019 GDR: August 12, 2025
KB5063758 - Description of the security update for SQL Server 2019 GDR: August 12, 2025 Summary Improvements and fixes included in this update How to obtain and install the update More information File information Information about protection and security Summary This security update contains fix...
KLA86590 Multiple vulnerabilities in Microsoft SQL Server
Multiple vulnerabilities were found in Microsoft SQL Server. Malicious users can exploit these vulnerabilities to gain privileges. Original advisories CVE-2025-53727 CVE-2025-49758 CVE-2025-47954 CVE-2025-49759 CVE-2025-24999 Related products Microsoft-SQL-Server Microsoft-Azure CVE list...
Unspecified Vulnerability in Microsoft SQL Server (CNVD-2025-16773)
Microsoft SQL Server is the United States Microsoft Microsoft company's set of applications in the Microsoft Windows system under the large commercial database system. A security vulnerability exists in Microsoft SQL Server. An attacker can exploit the vulnerability to gain access to sensitive...
PT-2024-8156 · Microsoft · Sql Server
Name of the Vulnerable Software and Affected Versions: Microsoft SQL Server affected versions not specified Description: The issue is related to a memory management problem, specifically a use-after-free condition. This could allow an attacker to execute arbitrary code. Recommendations: At the...
Microsoft SQL Server 安全漏洞
Microsoft SQL Server is the United States Microsoft Microsoft company's set of applications in the Microsoft Windows system under the large commercial database system. A remote code execution vulnerability exists in Microsoft SQL Server Native Client, which can be exploited by an attacker to...