Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
MicrosoftSql Server2016

17 matches found

CVE
CVEadded 2017/08/08 9:29 p.m.50423 views

CVE-2017-8516

Microsoft SQL Server Analysis Services in Microsoft SQL Server 2012, Microsoft SQL Server 2014, and Microsoft SQL Server 2016 allows an information disclosure vulnerability when it improperly enforces permissions, aka "Microsoft SQL Server Analysis Services Information Disclosure Vulnerability".

7.5CVSS7.1AI score0.01089EPSS
CVE
CVEadded 2021/01/12 8:15 p.m.4569 views

CVE-2021-1636

Microsoft SQL Elevation of Privilege Vulnerability

8.8CVSS8.8AI score0.02889EPSS
CVE
CVEadded 2023/04/11 9:15 p.m.2802 views

CVE-2023-23384

Microsoft SQL Server Remote Code Execution Vulnerability

7.3CVSS7.6AI score0.00795EPSS
CVE
CVEadded 2019/07/15 7:15 p.m.1982 views

CVE-2019-1068

A remote code execution vulnerability exists in Microsoft SQL Server when it incorrectly handles processing of internal functions, aka 'Microsoft SQL Server Remote Code Execution Vulnerability'.

8.8CVSS8.9AI score0.42689EPSS
CVE
CVEadded 2023/02/14 8:15 p.m.1491 views

CVE-2023-21713

Microsoft SQL Server Remote Code Execution Vulnerability

8.8CVSS9.3AI score0.00434EPSS
CVE
CVEadded 2020/02/11 10:15 p.m.1419 views

CVE-2020-0618

A remote code execution vulnerability exists in Microsoft SQL Server Reporting Services when it incorrectly handles page requests, aka 'Microsoft SQL Server Reporting Services Remote Code Execution Vulnerability'.

8.8CVSS8.5AI score0.94252EPSS
CVE
CVEadded 2022/06/15 10:15 p.m.1249 views

CVE-2022-29143

Microsoft SQL Server Remote Code Execution Vulnerability

7.5CVSS7.9AI score0.00705EPSS
CVE
CVEadded 2023/02/14 8:15 p.m.854 views

CVE-2023-21705

Microsoft SQL Server Remote Code Execution Vulnerability

8.8CVSS9.3AI score0.00566EPSS
CVE
CVEadded 2018/08/15 5:29 p.m.714 views

CVE-2018-8273

A buffer overflow vulnerability exists in the Microsoft SQL Server that could allow remote code execution on an affected system, aka "Microsoft SQL Server Remote Code Execution Vulnerability." This affects Microsoft SQL Server.

10CVSS9.8AI score0.11848EPSS
CVE
CVEadded 2023/02/14 8:15 p.m.698 views

CVE-2023-21528

Microsoft SQL Server Remote Code Execution Vulnerability

7.8CVSS8AI score0.00135EPSS
CVE
CVEadded 2023/10/10 6:15 p.m.675 views

CVE-2023-36728

Microsoft SQL Server Denial of Service Vulnerability

5.5CVSS5.9AI score0.0008EPSS
CVE
CVEadded 2016/11/10 7:0 a.m.559 views

CVE-2016-7250

Microsoft SQL Server 2014 SP1, 2014 SP2, and 2016 does not properly perform a cast of an unspecified pointer, which allows remote authenticated users to gain privileges via unknown vectors, aka "SQL RDBMS Engine Elevation of Privilege Vulnerability."

8.8CVSS8.6AI score0.16567EPSS
CVE
CVEadded 2023/02/14 8:15 p.m.555 views

CVE-2023-21718

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

7.8CVSS8AI score0.00408EPSS
CVE
CVEadded 2023/02/14 8:15 p.m.464 views

CVE-2023-21704

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

7.8CVSS8AI score0.0029EPSS
CVE
CVEadded 2016/11/10 7:0 a.m.351 views

CVE-2016-7252

Microsoft SQL Server 2016 mishandles the FILESTREAM path, which allows remote authenticated users to gain privileges via unspecified vectors, aka "SQL Analysis Services Information Disclosure Vulnerability."

6.5CVSS7.2AI score0.21092EPSS
CVE
CVEadded 2016/11/10 7:0 a.m.339 views

CVE-2016-7249

Microsoft SQL Server 2016 does not properly perform a cast of an unspecified pointer, which allows remote authenticated users to gain privileges via unknown vectors, aka "SQL RDBMS Engine Elevation of Privilege Vulnerability."

8.8CVSS8.6AI score0.16567EPSS
CVE
CVEadded 2016/11/10 7:0 a.m.258 views

CVE-2016-7251

Cross-site scripting (XSS) vulnerability in the MDS API in Microsoft SQL Server 2016 allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka "MDS API XSS Vulnerability."

6.1CVSS6.6AI score0.07631EPSS