VDB

CVE-2022-35840

CVE-2022-35840 PUBLISHED CVSS 8.800000190734863 HIGH

Microsoft OLE DB Provider for SQL Server Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-34731, CVE-2022-34733, CVE-2022-35834, CVE-2022-35835, CVE-2022-35836.

EPSS 13.91% · 94.5th percentile

Risk Scores

CVSS 3.1
8.800000190734863
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
EPSS Score
13.91%
94.5th percentile

Affected Products

VendorProductVersions
microsoftwindows_server_2008_sp26.0.6003.0, 6.0.6003.0, 6.0.6003.0
microsoftwindows_server_2008_R26.1.7601.0, 6.1.7601.0
MicrosoftWindows Server 2012 R26.3.9600.0
microsoftwindows_server_201610.0.14393.0, 10.0.14393.0
MicrosoftWindows Server 2012 R2 (Server Core installation)6.3.9600.0
MicrosoftWindows Server 20126.2.9200.0
MicrosoftWindows 76.1.0
microsoftwindows_server_201910.0.17763.0, 10.0.17763.0
microsoftwindows_11_21H210.0.0
microsoftwindows_server_2008r2
microsoftwindows_10_150710.0.10240.0
MicrosoftWindows Server 2008 Service Pack 2 (Server Core installation)6.0.6003.0
microsoftwindows_10_21H210.0.19043.0
MicrosoftWindows Server 2008 R2 Service Pack 16.1.7601.0
MicrosoftWindows 10 Version 20H210.0.0
MicrosoftWindows 10 Version 21H210.0.19043.0
microsoftwindows_10_180910.0.17763.0, 10.0.0
MicrosoftWindows 10 Version 180910.0.17763.0, 10.0.0
MicrosoftWindows Server 2008 Service Pack 26.0.6003.0
microsoftwindows_server_20126.2.9200.0, 6.2.9200.0, r2

…and 23 more

Exploit Intelligence

Timeline

  • Sep 13, 2022 CVE Published
  • Sep 14, 2022 EPSS Score
  • Sep 15, 2022 EPSS Score
  • Mar 7, 2023 EPSS Score
  • Mar 21, 2023 EPSS Score
  • Apr 22, 2023 EPSS Score
  • May 26, 2023 EPSS Score
  • Jun 28, 2023 EPSS Score
  • Jul 10, 2023 EPSS Score
  • Jul 21, 2023 EPSS Score
  • Aug 3, 2023 EPSS Score
  • Nov 21, 2024 CVE Updated

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›