Description
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
Reserved 2024-03-22 | Published 2024-05-14 | Updated 2024-08-02 | Assigner
microsoftHIGH: 8.8CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
Problem types
CWE-416: Use After Free
Product status
10.0.0 before 10.0.17763.5820
affected
10.0.0 before 10.0.17763.5820
affected
10.0.0 before 10.0.17763.5820
affected
10.0.0 before 10.0.20348.2461
affected
10.0.0 before 10.0.20348.2458
affected
10.0.0 before 10.0.22000.2960
affected
10.0.0 before 10.0.19044.4412
affected
10.0.0 before 10.0.22621.3593
affected
10.0.0 before 10.0.19045.4412
affected
10.0.0 before 10.0.22631.3593
affected
10.0.0 before 10.0.22631.3593
affected
10.0.0 before 10.0.25398.887
affected
10.0.0 before 10.0.10240.20651
affected
10.0.0 before 10.0.14393.6981
affected
10.0.0 before 10.0.14393.6981
affected
10.0.0 before 10.0.14393.6981
affected
6.0.0 before 6.0.6003.22668
affected
6.0.0 before 6.0.6003.22668
affected
6.0.0 before 6.0.6003.22668
affected
6.1.0 before 6.1.7601.27117
affected
6.0.0 before 6.1.7601.27117
affected
6.2.0 before 6.2.9200.24868
affected
6.2.0 before 6.2.9200.24868
affected
6.3.0 before 6.3.9600.21972
affected
6.3.0 before 6.3.9600.21972
affected
References
msrc.microsoft.com/update-guide/vulnerability/CVE-2024-30006 (Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability) vendor-advisory
cve.org (CVE-2024-30006)
nvd.nist.gov (CVE-2024-30006)
Download JSON
Subscribe to our newsletter to learn more about our work.