Sql Server Management Studio Security Vulnerabilities and Issues — Sql Server Management Studio CVE List

Lucene search

MicrosoftSql Server Management Studio

7 matches found

CVE•added 2025/04/12 2:15 a.m.•184 views

CVE-2025-29803

Uncontrolled search path element in Visual Studio Tools for Applications and SQL Server Management Studio allows an authorized attacker to elevate privileges locally.

7.3CVSS7.4AI score0.00073EPSS

CVE•added 2020/08/17 7:15 p.m.•114 views

CVE-2020-1455

A denial of service vulnerability exists when Microsoft SQL Server Management Studio (SSMS) improperly handles files. An attacker could exploit the vulnerability to trigger a denial of service.To exploit the vulnerability, an attacker would first require execution on the victim system.The security ...

5.5CVSS5.8AI score0.00813EPSS

CVE•added 2018/10/10 1:29 p.m.•83 views

CVE-2018-8533

An information disclosure vulnerability exists in Microsoft SQL Server Management Studio (SSMS) when parsing malicious XML content containing a reference to an external entity, aka "SQL Server Management Studio Information Disclosure Vulnerability." This affects SQL Server Management Studio 17.9, S...

5.5CVSS5.2AI score0.55975EPSS

CVE•added 2018/10/10 1:29 p.m.•78 views

CVE-2018-8532

An information disclosure vulnerability exists in Microsoft SQL Server Management Studio (SSMS) when parsing a malicious XMLA file containing a reference to an external entity, aka "SQL Server Management Studio Information Disclosure Vulnerability." This affects SQL Server Management Studio 17.9, S...

5.5CVSS5.2AI score0.55975EPSS

CVE•added 2018/10/10 1:29 p.m.•74 views

CVE-2018-8527

An information disclosure vulnerability exists in Microsoft SQL Server Management Studio (SSMS) when parsing a malicious XEL file containing a reference to an external entity, aka "SQL Server Management Studio Information Disclosure Vulnerability." This affects SQL Server Management Studio 17.9, SQ...

5.5CVSS5.2AI score0.55975EPSS

CVE•added 2019/10/10 2:15 p.m.•72 views

CVE-2019-1313

An information disclosure vulnerability exists in Microsoft SQL Server Management Studio (SSMS) when it improperly enforces permissions, aka 'SQL Server Management Studio Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-1376.

6.5CVSS6.1AI score0.07628EPSS

CVE•added 2019/10/10 2:15 p.m.•59 views

CVE-2019-1376

6.5CVSS6.1AI score0.07628EPSS