We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Fathom (Privacy friendly web analytics)
Zendesk (Helpdesk and Chat)

Ok

Home | EN
Support
CVE

PUBLISHED

CVE-2024-28945

Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability

Assigner	microsoft
Reserved	2024-03-13
Published	2024-04-09
Updated	2024-07-05

Description

Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability

HIGH: 8.8

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Problem types

CWE-191: Integer Underflow (Wrap or Wraparound)

Product status

15.0.0 before 15.0.2110.4

affected

16.0.0 before 16.0.1115.1

affected

19.0.0 before 19.3.0003.0

affected

18.0.0 before 18.7.0002.0

affected

15.0.0 before 15.0.4360.2

affected

16.0.0 before 16.0.4120.1

affected

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-28945 (Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability) vendor-advisory

cve.org CVE-2024-28945

nvd.nist.gov CVE-2024-28945

Download JSON

https://cve.threatint.com/CVE/CVE-2024-28945

Find us on

Data Privacy
Terms of Use

© Copyright 2024 THREATINT. Made in Cyprus with ❤ + ☼