msrc_CVE-2024-38255 — Vulnetix

msrc_CVE-2024-38255 PUBLISHED CVSS 8.800000190734863 HIGH

Risk Scores

CVSS v3.1

8.800000190734863

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Affected Products

Vendor	Product	Versions
	Microsoft SQL Server 2016 for x64-based Systems Service Pack 3 (GDR) <13.0.6455.2
	Microsoft SQL Server 2017 for x64-based Systems (GDR) <14.0.2070.1
	Microsoft SQL Server 2016 for x64-based Systems Service Pack 3 Azure Connect Feature Pack 13.0.7050.2
	Microsoft SQL Server 2016 for x64-based Systems Service Pack 3 (GDR) 13.0.6455.2
	Microsoft SQL Server 2017 for x64-based Systems (CU 31) <14.0.3485.1
	Microsoft SQL Server 2016 for x64-based Systems Service Pack 3 Azure Connect Feature Pack <13.0.7050.2
	Microsoft SQL Server 2017 for x64-based Systems (GDR) 14.0.2070.1
	Microsoft SQL Server 2019 for x64-based Systems (CU 29) 15.0.4410.1
	Microsoft SQL Server 2019 for x64-based Systems (CU 29) <15.0.4410.1
	Microsoft SQL Server 2017 for x64-based Systems (CU 31) 14.0.3485.1
	Microsoft SQL Server 2019 for x64-based Systems (GDR) 15.0.2130.3
	Microsoft SQL Server 2019 for x64-based Systems (GDR) <15.0.2130.3

Timeline

Nov 12, 2024 CVE Published
Mar 31, 2026 Security Advisory
Mar 31, 2026 Security Advisory

References

Open in Interactive Console →

$ Console Community · 100/wk Open console ›