4416 matches found
CVE-2025-47997 Microsoft SQL Server Information Disclosure Vulnerability
...
Microsoft SQL Server Elevation of Privilege Vulnerability
Improper neutralization of special elements used in a command 'command injection' in SQL Server allows an authorized attacker to elevate privileges over a network...
KB5065226 - Description of the security update for SQL Server 2016 SP3 GDR: September 9, 2025
KB5065226 - Description of the security update for SQL Server 2016 SP3 GDR: September 9, 2025 Summary Improvements and fixes included in this update How to obtain and install the update More information File information Information about protection and security Summary This security update contai...
KB5065227 - Description of the security update for SQL Server 2016 SP3 Azure Connect Feature Pack: September 9, 2025
KB5065227 - Description of the security update for SQL Server 2016 SP3 Azure Connect Feature Pack: September 9, 2025 Summary Improvements and fixes included in this update How to obtain and install the update More information File information Information about protection and security Summary This...
KB5065225 - Description of the security update for SQL Server 2017 CU31: September 9, 2025
KB5065225 - Description of the security update for SQL Server 2017 CU31: September 9, 2025 Summary Improvements and fixes included in this update How to obtain and install the update More information File information Information about protection and security Summary This security update contains...
KB5065223 - Description of the security update for SQL Server 2019 GDR: September 9, 2025
KB5065223 - Description of the security update for SQL Server 2019 GDR: September 9, 2025 Summary Improvements and fixes included in this update How to obtain and install the update More information File information Information about protection and security Summary This security update contains...
KB5065224 - Description of the security update for SQL Server 2017 GDR: September 9, 2025
KB5065224 - Description of the security update for SQL Server 2017 GDR: September 9, 2025 Summary Improvements and fixes included in this update How to obtain and install the update More information File information Information about protection and security Summary This security update contains...
KB5065221 - Description of the security update for SQL Server 2022 GDR: September 9, 2025
KB5065221 - Description of the security update for SQL Server 2022 GDR: September 9, 2025 Summary Improvements and fixes included in this update How to obtain and install the update More information File information Information about protection and security Summary This security update contains...
KB5065222 - Description of the security update for SQL Server 2019 CU32: September 9, 2025
KB5065222 - Description of the security update for SQL Server 2019 CU32: September 9, 2025 Summary Improvements and fixes included in this update How to obtain and install the update How to obtain or download the latest cumulative update package for Linux More information File information...
KLA87442 Multiple vulnerabilities in Microsoft SQL Server
Multiple vulnerabilities were found in Microsoft SQL Server. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code, obtain sensitive information, gain privileges. Below is a complete list of vulnerabilities: 1. Improper Handling of Exceptional...
Microsoft SQL Server 命令注入漏洞
Microsoft SQL Server is a large commercial database system from Microsoft that is used under Microsoft Windows. A command injection vulnerability exists in Microsoft SQL Server. An attacker can exploit the vulnerability to elevate privileges. The following products and versions are...
PT-2025-36888
Name of the Vulnerable Software and Affected Versions: SQL Server affected versions not specified Description: An improper neutralization of special elements used in a command 'command injection' exists in SQL Server. This allows an authorized attacker to elevate privileges over a network...
Microsoft SQL Server 竞争条件问题漏洞
Microsoft SQL Server is a large commercial database system from Microsoft Corporation that is used under Microsoft Windows. A competitive condition issue vulnerability exists in Microsoft SQL Server. An attacker exploiting this vulnerability could gain access to sensitive information. The followi...
Security Updates for Microsoft SQL Server (September 2025)
The Microsoft SQL Server installation on the remote host is missing a security update. It is, therefore, affected by the following vulnerabilities: - Improper Handling of Exceptional Conditions in Newtonsoft.Json CVE-2024-21907 - An information disclosure vulnerability CVE-2025-47997 - A privileg...
CVE-2025-53727
Improper neutralization of special elements used in an sql command 'sql injection' in SQL Server allows an authorized attacker to elevate privileges over a network...
CVE-2025-49758
Improper neutralization of special elements used in an sql command 'sql injection' in SQL Server allows an authorized attacker to elevate privileges over a network...
CVE-2025-24999
Improper access control in SQL Server allows an authorized attacker to elevate privileges over a network...
CVE-2025-47954 Microsoft SQL Server Elevation of Privilege Vulnerability
...
KB5063814 - Description of the security update for SQL Server 2022 CU20: August 12, 2025
KB5063814 - Description of the security update for SQL Server 2022 CU20: August 12, 2025 Summary Improvements and fixes included in this update How to obtain and install the update How to obtain or download the latest cumulative update package for Linux More information File information Informati...
Microsoft SQL Server SQL注入漏洞
Microsoft SQL Server is a large commercial database system from Microsoft Corporation USA that is applied under the Microsoft Windows system. A SQL injection vulnerability exists in Microsoft SQL Server. An attacker can exploit the vulnerability to elevate privileges. The following products and...