VDB
CVE-2022-29143
CVE-2022-29143
PUBLISHED
CVSS 7.5 HIGH
Microsoft SQL Server Remote Code Execution Vulnerability.
EPSS 2.77% · 86.3th percentile
Risk Scores
CVSS v3.1
7.5
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
EPSS Score
2.77%
86.3th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Microsoft SQL Server 2019 (GDR) | 15.0.0 |
| Microsoft | Microsoft SQL Server 2017 (GDR) | 14.0.0 |
| Microsoft | Microsoft SQL Server 2019 (CU 16) | 15.0.0.0 |
| microsoft | sql_server | 12.0.0, 13.0.0, 12.0.0 |
| Microsoft | Microsoft SQL Server 2016 Service Pack 3 Azure Connect Feature Pack | 13.0.0 |
| Microsoft | Microsoft SQL Server 2014 Service Pack 3 (CU 4) | 12.0.0 |
| Microsoft | Microsoft SQL Server 2016 Service Pack 2 (CU 17) | 13.0.0.0 |
| Microsoft | Microsoft SQL Server 2016 for x64-based Systems Service Pack 2 (GDR) | 13.0.0 |
| Microsoft | Microsoft SQL Server 2014 Service Pack 3 (GDR) | 12.0.0 |
| Microsoft | Microsoft SQL Server 2016 Service Pack 3 (GDR) | 13.0.0 |
| Microsoft | Microsoft SQL Server 2017 (CU 29) | 14.0.0.0 |
Timeline
- Jun 14, 2022 CVE Published
- Jun 16, 2022 EPSS Score
- Jun 25, 2022 EPSS Score
- Sep 21, 2022 EPSS Score
- Nov 8, 2022 EPSS Score
- Dec 26, 2022 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 1, 2023 EPSS Score
- May 19, 2023 EPSS Score
- Jul 8, 2023 EPSS Score
- Aug 23, 2023 EPSS Score
- Oct 10, 2023 EPSS Score