GHSA-qmc2-fr3x-59pg

GHSA-qmc2-fr3x-59pg PUBLISHED CVSS 8.800000190734863 HIGH

Improper neutralization of special elements used in an sql command ('sql injection') in SQL Server allows an authorized attacker to elevate privileges over a network.

Risk Scores

CVSS v3.1

8.800000190734863

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Timeline

Mar 10, 2026 CVE Published
Apr 10, 2026 Security Advisory

References

https://nvd.nist.gov/vuln/detail/CVE-2026-26116 advisory
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-26116 url

Open in Interactive Console →