VDB

GCVE-110-CLOUD-2023-0033

GCVE-110-CLOUD-2023-0033
Advisory Published
Vulnetix · Advisory published June 2, 2023
A vulnerability was discovered in Cloud SQL for SQL Server that allowed customer administrator accounts to create triggers in the tempdb database and use those to gain sysadmin privileges in the instance. The sysadmin privileges would give the attacker access to system databases and partial access to the machine running that SQL Server instance.

Affected Products

VendorProductVersionsPlatforms
GCPCloud SQL
GCPCloud Services

References

advisory
advisory

Browse GCVE Records

73,738 records in the GCVE database · Updated July 19, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›