VDB

CVE-2023-36417

CVE-2023-36417 PUBLISHED CVSS 7.800000190734863 HIGH

Microsoft SQL OLE DB Remote Code Execution Vulnerability

EPSS 0.43% · 63.0th percentile

Risk Scores

CVSS v3.1
7.800000190734863
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
EPSS Score
0.43%
63.0th percentile

Affected Products

VendorProductVersions
MicrosoftMicrosoft OLE DB Driver 18 for SQL Server18.0.0
MicrosoftMicrosoft SQL Server 2022 (GDR)16.0.0
MicrosoftMicrosoft OLE DB Driver 19 for SQL Server19.0.0
microsoftole_db_driver_19_for_sql_server19.0.0
microsoftsql_server2019, 2022, 15.0.0
MicrosoftMicrosoft SQL Server 2019 (GDR)15.0.0
microsoftole_db_driver_18_for_sql_server18.0.0
microsoftole_db_driver_for_sql_server18.0.0, 19.0.0
MicrosoftMicrosoft SQL Server 2019 (CU 22)15.0.0
MicrosoftMicrosoft SQL Server 2022 (CU 8)15.0.0

Timeline

  • Oct 10, 2023 CVE Published
  • Oct 11, 2023 EPSS Score
  • Nov 11, 2023 EPSS Score
  • Dec 13, 2023 EPSS Score
  • Feb 14, 2024 EPSS Score
  • Mar 16, 2024 EPSS Score
  • Apr 16, 2024 EPSS Score
  • May 18, 2024 EPSS Score
  • Jul 19, 2024 EPSS Score
  • Aug 20, 2024 EPSS Score
  • Sep 20, 2024 EPSS Score
  • Oct 22, 2024 EPSS Score

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›