Sql Server 2019 Security Vulnerabilities and Issues — Page 3 of Sql Server 2019 CVE List | Vulners.com

Lucene search

K

MicrosoftSql Server 2019

129 matches found

CVE•added 2024/09/10 5:15 p.m.•74 views

CVE-2024-37966

Microsoft SQL Server Native Scoring Information Disclosure Vulnerability

7.1CVSS7.2AI score0.15632EPSS

CVE•added 2024/11/12 6:15 p.m.•74 views

CVE-2024-48996

SQL Server Native Client Remote Code Execution Vulnerability

8.8CVSS9AI score0.06043EPSS

CVE•added 2024/11/12 6:15 p.m.•74 views

CVE-2024-49000

SQL Server Native Client Remote Code Execution Vulnerability

8.8CVSS9AI score0.06043EPSS

CVE•added 2024/11/12 6:15 p.m.•74 views

CVE-2024-49005

SQL Server Native Client Remote Code Execution Vulnerability

8.8CVSS9AI score0.06043EPSS

CVE•added 2024/11/12 6:15 p.m.•74 views

CVE-2024-49014

SQL Server Native Client Remote Code Execution Vulnerability

8.8CVSS9AI score0.06043EPSS

CVE•added 2024/09/10 5:15 p.m.•73 views

CVE-2024-37342

Microsoft SQL Server Native Scoring Information Disclosure Vulnerability

7.1CVSS5.8AI score0.048EPSS

CVE•added 2024/11/12 6:15 p.m.•71 views

CVE-2024-48998

SQL Server Native Client Remote Code Execution Vulnerability

8.8CVSS9AI score0.06043EPSS

CVE•added 2024/09/10 5:15 p.m.•68 views

CVE-2024-26191

Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability

8.8CVSS8.9AI score0.12928EPSS

CVE•added 2024/11/12 6:15 p.m.•68 views

CVE-2024-48999

SQL Server Native Client Remote Code Execution Vulnerability

8.8CVSS9AI score0.06043EPSS

CVE•added 2024/11/12 6:15 p.m.•68 views

CVE-2024-49012

SQL Server Native Client Remote Code Execution Vulnerability

8.8CVSS9AI score0.06043EPSS

CVE•added 2025/07/08 5:15 p.m.•68 views

CVE-2025-49719

Improper input validation in SQL Server allows an unauthorized attacker to disclose information over a network.

7.5CVSS6.7AI score0.00612EPSS

CVE•added 2024/11/12 6:15 p.m.•67 views

CVE-2024-49003

SQL Server Native Client Remote Code Execution Vulnerability

8.8CVSS9AI score0.06043EPSS

CVE•added 2024/09/10 5:15 p.m.•66 views

CVE-2024-37335

Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability

8.8CVSS8.9AI score0.12928EPSS

CVE•added 2024/11/12 6:15 p.m.•66 views

CVE-2024-49006

SQL Server Native Client Remote Code Execution Vulnerability

8.8CVSS9AI score0.06043EPSS

CVE•added 2024/11/12 6:15 p.m.•65 views

CVE-2024-48993

SQL Server Native Client Remote Code Execution Vulnerability

8.8CVSS9AI score0.06043EPSS

CVE•added 2024/11/12 6:15 p.m.•65 views

CVE-2024-49016

SQL Server Native Client Remote Code Execution Vulnerability

8.8CVSS9AI score0.06043EPSS

CVE•added 2024/11/12 6:15 p.m.•64 views

CVE-2024-49010

SQL Server Native Client Remote Code Execution Vulnerability

8.8CVSS9AI score0.07985EPSS

CVE•added 2024/11/12 6:15 p.m.•63 views

CVE-2024-43459

SQL Server Native Client Remote Code Execution Vulnerability

8.8CVSS9AI score0.06043EPSS

CVE•added 2024/11/12 6:15 p.m.•60 views

CVE-2024-49013

SQL Server Native Client Remote Code Execution Vulnerability

8.8CVSS9AI score0.06043EPSS

CVE•added 2024/11/12 6:15 p.m.•58 views

CVE-2024-48997

SQL Server Native Client Remote Code Execution Vulnerability

8.8CVSS9AI score0.06043EPSS

CVE•added 2024/11/12 6:15 p.m.•57 views

CVE-2024-48995

SQL Server Native Client Remote Code Execution Vulnerability

8.8CVSS9AI score0.06043EPSS

CVE•added 2025/07/08 5:15 p.m.•43 views

CVE-2025-49717

Heap-based buffer overflow in SQL Server allows an authorized attacker to execute code over a network.

8.5CVSS7.8AI score0.00097EPSS

CVE•added 2025/07/08 5:15 p.m.•28 views

CVE-2025-49718

Use of uninitialized resource in SQL Server allows an unauthorized attacker to disclose information over a network.

7.5CVSS6.7AI score0.01125EPSS

CVE•added 2025/08/12 6:15 p.m.•27 views

CVE-2025-24999

Improper access control in SQL Server allows an authorized attacker to elevate privileges over a network.

8.8CVSS7.7AI score0.00082EPSS

CVE•added 2025/08/12 6:15 p.m.•23 views

CVE-2025-49758

Improper neutralization of special elements used in an sql command ('sql injection') in SQL Server allows an authorized attacker to elevate privileges over a network.

8.8CVSS7.8AI score0.00082EPSS

CVE•added 2025/08/12 6:15 p.m.•22 views

CVE-2025-49759

Improper neutralization of special elements used in an sql command ('sql injection') in SQL Server allows an authorized attacker to elevate privileges over a network.

8.8CVSS7.8AI score0.00098EPSS

CVE•added 2025/08/12 6:15 p.m.•20 views

CVE-2025-53727

Improper neutralization of special elements used in an sql command ('sql injection') in SQL Server allows an authorized attacker to elevate privileges over a network.

8.8CVSS7.8AI score0.00098EPSS

CVE•added 2025/09/09 5:15 p.m.•14 views

CVE-2025-47997

Concurrent execution using shared resource with improper synchronization ('race condition') in SQL Server allows an authorized attacker to disclose information over a network.

6.5CVSS6.8AI score0.00101EPSS

CVE•added 2025/09/09 5:16 p.m.•14 views

CVE-2025-55227

Improper neutralization of special elements used in a command ('command injection') in SQL Server allows an authorized attacker to elevate privileges over a network.

8.8CVSS7.1AI score0.00085EPSS

Total number of security vulnerabilities129