VDB

CISA-2023-29356

CISA-2023-29356 PUBLISHED CVSS 7.8 HIGH

Reported by microsoft · Published June 16, 2023

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

Risk Scores

CVSS 3.1
7.8
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Affected Products

VendorProductVersions
MicrosoftMicrosoft ODBC Driver 17 for SQL Server on Linux17.0.0.0
MicrosoftMicrosoft ODBC Driver 18 for SQL Server on Linux18.0.0.0
MicrosoftMicrosoft ODBC Driver 17 for SQL Server on Windows17.0.0.0
MicrosoftMicrosoft ODBC Driver 18 for SQL Server on Windows18.0.0.0
MicrosoftMicrosoft ODBC Driver 17 for SQL Server on MacOS17.0.0.0
MicrosoftMicrosoft ODBC Driver 18 for SQL Server on MacOS18.0.0.0
MicrosoftMicrosoft Visual Studio 2022 version 17.217.2.0
MicrosoftMicrosoft Visual Studio 2022 version 17.417.4.0
MicrosoftMicrosoft Visual Studio 2022 version 17.617.6.0
MicrosoftMicrosoft Visual Studio 2022 version 17.817.8.0
MicrosoftMicrosoft Visual Studio 2019 version 16.11 (includes 16.0 - 16.10)16.11.0
MicrosoftMicrosoft Visual Studio 2022 version 17.617.6.0, 17.6.0
MicrosoftMicrosoft ODBC Driver 17 for SQL Server on Windows17.0.0.0, 17.0.0.0
microsoftvisual_studio_202217.2.0, 17.4.0, 17.2.0
microsoftodbc_driver_18_for_sql_server18.0.0.0, 18.0.0.0, 18.0.0.0
MicrosoftMicrosoft ODBC Driver 18 for SQL Server on Windows18.0.0.0, 18.0.0.0
MicrosoftMicrosoft ODBC Driver 17 for SQL Server on Linux17.0.0.0, 17.0.0.0
microsoftvisual_studio_201916.11.0, 16.11.0
MicrosoftMicrosoft Visual Studio 2022 version 17.817.8.0, 17.8.0
MicrosoftMicrosoft Visual Studio 2022 version 17.417.4.0, 17.4.0

…and 7 more

Timeline

  • Jun 16, 2023 CVE Published
  • Feb 28, 2025 CVE Updated
  • Apr 26, 2026 Security Advisory
Open in Interactive Console →
$ Console Community · 100/wk Open console ›