VDB

GSD-2023-21568

GSD-2023-21568 PUBLISHED CVSS 7.300000190734863 HIGH

Microsoft SQL Server Integration Service (VS extension) Remote Code Execution Vulnerability

Risk Scores

CVSS v3.1
7.300000190734863
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Affected Products

VendorProductVersions
MicrosoftSQL Server Integration Services for Visual Studio 201916.0.0
MicrosoftSQL Server Integration Services for Visual Studio 202216.0.0
microsoftsql_server16.0.0, 16.0.0

Timeline

  • Feb 5, 2020 CVE Published
  • Mar 7, 2023 PoC Published
  • Mar 1, 2024 PoC Published
  • Jul 14, 2024 PoC Published
  • Feb 25, 2025 PoC Published
  • Sep 30, 2025 PoC Published
  • Apr 20, 2026 Security Advisory

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›