Description
Microsoft ODBC Driver Remote Code Execution Vulnerability
Reserved 2022-12-16 | Published 2023-02-14 | Updated 2025-01-01 | Assigner
microsoftHIGH: 8.8CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
Problem types
CWE-190: Integer Overflow or Wraparound
Product status
10.0.17763.0 before 10.0.17763.4010
affected
10.0.0 before 10.0.17763.4010
affected
10.0.17763.0 before 10.0.17763.4010
affected
10.0.17763.0 before 10.0.17763.4010
affected
10.0.20348.0 before 10.0.20348.1547
affected
10.0.0 before 10.0.19042.2604
affected
10.0.0 before 10.0.22621.1574
affected
10.0.19043.0 before 10.0.19044.2604
affected
10.0.22621.0 before 10.0.22621.1265
affected
10.0.19045.0 before 10.0.19045.2604
affected
10.0.10240.0 before 10.0.10240.19747
affected
10.0.14393.0 before 10.0.14393.5717
affected
10.0.14393.0 before 10.0.14393.5717
affected
10.0.14393.0 before 10.0.14393.5717
affected
6.0.6003.0 before 6.0.6003.21915
affected
6.0.6003.0 before 6.0.6003.21915
affected
6.0.6003.0 before 6.0.6003.21915
affected
6.1.7601.0 before 6.1.7601.26366
affected
6.1.7601.0 before 6.1.7601.26366
affected
6.2.9200.0 before 6.2.9200.24116
affected
6.2.9200.0 before 6.2.9200.24116
affected
6.3.9600.0 before 6.3.9600.20821
affected
6.3.9600.0 before 6.3.9600.20821
affected
References
msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21797 (Microsoft ODBC Driver Remote Code Execution Vulnerability) vendor-advisory
cve.org (CVE-2023-21797)
nvd.nist.gov (CVE-2023-21797)
Download JSON
