CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4418 matches found

Kaspersky•added 2023/04/11 12:0 a.m.•162 views

KLA48844 Multiple vulnerabilities in Microsoft SQL Server

Multiple vulnerabilities were found in Microsoft SQL Server. Malicious users can exploit these vulnerabilities to execute arbitrary code. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in Microsoft SQL Server can be exploited remotely to execute arbitrary...

7.8CVSS8.6AI score0.01792EPSS

Exploits0References14

Tenable Nessus•added 2023/04/11 12:0 a.m.•129 views

KB5025277: Windows Server 2008 R2 Security Update (April 2023)

The remote Windows host is missing security update 5025277. It is, therefore, affected by multiple vulnerabilities - Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability CVE-2023-28275 - Windows Pragmatic General Multicast PGM Remote Code Execution Vulnerability...

9.8CVSS7.4AI score0.91896EPSS

Exploits22References45

Tenable Nessus•added 2023/04/11 12:0 a.m.•89 views

KB5025230: Windows Server 2022 / Azure Stack HCI 22H2 Security Update (April 2023)

The remote Windows host is missing security update 5025230. It is, therefore, affected by multiple vulnerabilities - Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability CVE-2023-28275 - Windows Pragmatic General Multicast PGM Remote Code Execution Vulnerability...

9.8CVSS7.4AI score0.91896EPSS

Exploits22References72

CNNVD•added 2023/03/30 12:0 a.m.•1 views

HashiCorp Vault SQL注入漏洞

HashiCorp Vault is a private key access management tool from HashiCorp Inc. in the United States. A SQL injection vulnerability exists in HashiCorp Vault versions 0.8.0 through 1.13.1, which stems from the fact that when configuring the MSSQL plugin locally, certain parameters are not cleaned up...

6.7CVSS6.6AI score0.00153EPSS

Exploits0References4

HackRead•added 2023/03/29 8:21 p.m.•17 views

How to Hide Tables in SQL Server Management Studio

By Owais Sultan SQL Server Management Studio SSMS is a software application developed by Microsoft that is used for configuring, managing,… This is a post from HackRead.com Read the original post: How to Hide Tables in SQL Server Management Studio...

7.2AI score

Exploits0

0day.today•added 2023/03/16 12:0 a.m.•950 views

Microsoft SQL Server 2014 / 2016 / 2017 / 2019 / 2022 Audit Logging Failure Vulnerability

Microsoft SQL Server 2014, 2016, 2017, 2019, and 2022 appears to ignore audit rules for sys.sysxlgns allowing an attacker with administrative permissions to extract password hashes under the radar. Microsoft told the researcher they are not willing to fix it but acknowledge it as a security...

8.1AI score

Exploits0

Packet Storm•added 2023/03/16 12:0 a.m.•385 views

Microsoft SQL Server 2014 / 2016 / 2017 / 2019 / 2022 Audit Logging Failure

Title: Microsoft SQL Server Password Hash Exposure Product: Database Manufacturer: Microsoft Affected Versions: 2012-2022 Risk Level: Medium CVE Reference: N/A Author of Advisory: Emad Al-Mousa Overview: SQL Server is a popular database system, and database systems are a vital backbone in IT...

7.4AI score

Exploits0

Tenable Nessus•added 2023/02/17 12:0 a.m.•842 views

Security Updates for Microsoft SQL Server (February 2023)

The Microsoft SQL Server installation on the remote host is missing security updates. It is, therefore, affected by multiple vulnerabilities: - A remote code execution vulnerability. An attacker can exploit this to bypass authentication and execute unauthorized arbitrary commands. CVE-2023-21528,...

8.8CVSS8.7AI score0.02059EPSS

Exploits0References18

Tenable Nessus•added 2023/02/17 12:0 a.m.•287 views

Security Updates for Microsoft SQL Server (February 2023)

8.8CVSS8.7AI score0.02059EPSS

Exploits0References18

SUSE CVE•added 2023/02/15 4:33 a.m.•2 views

SUSE CVE-2018-2762

Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server: Connection. Supported versions that are affected are 5.7.21 and prior. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where MySQL Server executes to compromise MySQ...

4.4CVSS6.5AI score0.00107EPSS

Exploits0References3

Rapid7 Blog•added 2023/02/15 12:41 a.m.•138 views

Patch Tuesday - February 2023

It’s Patch Tuesday again. Microsoft is addressing fewer individual vulnerabilities this month than last, but there’s still plenty to keep admins and defenders occupied. Three zero-day vulnerabilities are vying for your attention today: a lone Microsoft Publisher vulnerability as well as a couple...

2.9CVSS0.7AI score0.91419EPSS

Exploits17