CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4519 matches found

Packet Storm•added 2023/03/16 12:0 a.m.•386 views

Microsoft SQL Server 2014 / 2016 / 2017 / 2019 / 2022 Audit Logging Failure

Title: Microsoft SQL Server Password Hash Exposure Product: Database Manufacturer: Microsoft Affected Versions: 2012-2022 Risk Level: Medium CVE Reference: N/A Author of Advisory: Emad Al-Mousa Overview: SQL Server is a popular database system, and database systems are a vital backbone in IT...

7.4AI score

Exploits0

BDU FSTEC•added 2023/03/06 12:0 a.m.•1 views

The vulnerability of the WDAC OLE DB driver for SQL Server on Windows operating systems allows a hacker to execute arbitrary code.

The vulnerability of the WDAC OLE DB driver for SQL Server on Windows operating systems is related to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

10CVSS0.00594EPSS

Exploits0References3

BDU FSTEC•added 2023/03/03 12:0 a.m.•1 views

The vulnerability of the Microsoft SQL Server relational database management system arises from insufficient validation of input data, allowing an attacker to execute arbitrary code.

The vulnerability of the Microsoft SQL Server relational database management system exists due to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

9CVSS0.02059EPSS

Exploits0References2

BDU FSTEC•added 2023/03/01 12:0 a.m.•1 views

The vulnerability of the Microsoft ODBC driver for Microsoft SQL Server allows a hacker to execute arbitrary code.

The vulnerability of the Microsoft ODBC driver for Microsoft SQL Server database management system is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

7.8CVSS0.01189EPSS

Exploits0References4

BDU FSTEC•added 2023/03/01 12:0 a.m.•1 views

The vulnerability of the WDAC OLE DB driver for SQL Server on Microsoft Windows operating systems allows a hacker to execute arbitrary code.

The vulnerability of the WDAC OLE DB driver for SQL Server on Microsoft Windows operating systems is related to insufficient validation of input data. Exploiting this vulnerability allows an attacker to execute arbitrary code by sending specially crafted malicious packages remotely...

10CVSS0.02422EPSS

Exploits0References4

BDU FSTEC•added 2023/02/27 12:0 a.m.•1 views

The vulnerability of the Microsoft SQL Server database management system, related to insufficient validation of input data, allows a hacker to execute arbitrary code.

The vulnerability of the Microsoft SQL Server database management system is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

7.8CVSS0.00166EPSS

Exploits0References4

Tenable Nessus•added 2023/02/17 12:0 a.m.•842 views

Security Updates for Microsoft SQL Server (February 2023)

The Microsoft SQL Server installation on the remote host is missing security updates. It is, therefore, affected by multiple vulnerabilities: - A remote code execution vulnerability. An attacker can exploit this to bypass authentication and execute unauthorized arbitrary commands. CVE-2023-21528,...

8.8CVSS8.7AI score0.02059EPSS

Exploits0References18

Tenable Nessus•added 2023/02/17 12:0 a.m.•288 views

Security Updates for Microsoft SQL Server (February 2023)

8.8CVSS8.7AI score0.02059EPSS

Exploits0References18

SUSE CVE•added 2023/02/15 4:33 a.m.•2 views

SUSE CVE-2018-2762

Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server: Connection. Supported versions that are affected are 5.7.21 and prior. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where MySQL Server executes to compromise MySQ...

4.4CVSS6.5AI score0.00107EPSS

Exploits0References3

Rapid7 Blog•added 2023/02/15 12:41 a.m.•138 views

Patch Tuesday - February 2023

It’s Patch Tuesday again. Microsoft is addressing fewer individual vulnerabilities this month than last, but there’s still plenty to keep admins and defenders occupied. Three zero-day vulnerabilities are vying for your attention today: a lone Microsoft Publisher vulnerability as well as a couple...

2.9CVSS0.7AI score0.91419EPSS

Exploits18