Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microsoft sql server 2008 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2015-1762
Microsoft SQL Server 2008 SP3 and SP4, 2008 R2 SP2 and SP3, 2012 SP1 and SP2, and 2014, when transactional replication is configured, does not prevent use of uninitialized memory in unspecified function calls, which allows remote authenticated users to execute arbitrary code by l...
Microsoft Sql Server 2008
Microsoft Sql Server 2012
Microsoft Sql Server 2014
1 Article
NA
CVE-2015-1761
Microsoft SQL Server 2008 SP3 and SP4, 2008 R2 SP2 and SP3, 2012 SP1 and SP2, and 2014 uses an incorrect class during casts of unspecified pointers, which allows remote authenticated users to gain privileges by leveraging certain write access, aka "SQL Server Elevation of Pr...
Microsoft Sql Server 2012
Microsoft Sql Server 2014
Microsoft Sql Server 2008
1 Article
NA
CVE-2015-1763
Microsoft SQL Server 2008 SP3 and SP4, 2008 R2 SP2 and SP3, 2012 SP1 and SP2, and 2014 does not prevent use of uninitialized memory in certain attempts to execute virtual functions, which allows remote authenticated users to execute arbitrary code via a crafted query, aka "S...
Microsoft Sql Server 2008
Microsoft Sql Server 2012
Microsoft Sql Server 2014
1 Article
7.3
CVSSv3
CVE-2023-23384
Microsoft SQL Server Remote Code Execution Vulnerability
Microsoft Sql Server 2008
Microsoft Sql Server 2014
Microsoft Sql Server 2017
Microsoft Sql Server 2012
Microsoft Sql Server 2019
Microsoft Sql Server 2016
Microsoft Sql Server 2022
7.8
CVSSv3
CVE-2023-21528
Microsoft SQL Server Remote Code Execution Vulnerability
Microsoft Sql Server 2008
Microsoft Sql Server 2014
Microsoft Sql Server 2017
Microsoft Sql Server 2012
Microsoft Sql Server 2019
Microsoft Sql Server 2016
Microsoft Sql Server 2022
NA
CVE-2008-0086
Buffer overflow in the convert function in Microsoft SQL Server 2000 SP4, 2000 Desktop Engine (MSDE 2000) SP4, and 2000 Desktop Engine (WMSDE) allows remote authenticated users to execute arbitrary code via a crafted SQL expression.
Microsoft Sql Server 7.0
Microsoft Sql Server Desktop Engine 2000
Microsoft Sql Server 2000
Microsoft Sql Server 2005
Microsoft Sql Server Express Edition 2005
Microsoft Data Engine 1.0
NA
CVE-2008-0106
Buffer overflow in Microsoft SQL Server 2005 SP1 and SP2, and 2005 Express Edition SP1 and SP2, allows remote authenticated users to execute arbitrary code via a crafted insert statement.
Microsoft Sql Server 7.0
Microsoft Sql Server Desktop Engine 2000
Microsoft Sql Server Express Edition 2005
Microsoft Data Engine 1.0
Microsoft Sql Server 2000
Microsoft Sql Server 2005
7.8
CVSSv3
CVE-2023-21718
Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability
Microsoft Sql Server 2008
Microsoft Sql Server 2014
Microsoft Sql Server 2017
Microsoft Sql Server 2012
Microsoft Sql Server 2019
Microsoft Sql Server 2016
Microsoft Sql Server 2022
Microsoft Sql Server 2008 R2
NA
CVE-2012-2552
Cross-site scripting (XSS) vulnerability in the SQL Server Report Manager in Microsoft SQL Server 2000 Reporting Services SP2 and SQL Server 2005 SP4, 2008 SP2 and SP3, 2008 R2 SP1, and 2012 allows remote malicious users to inject arbitrary web script or HTML via an unspecified p...
Microsoft Sql Server 2005
Microsoft Sql Server 2008
Microsoft Sql Server 2012
Microsoft Sql Server Reporting Services 2000
NA
CVE-2014-4061
Microsoft SQL Server 2008 SP3, 2008 R2 SP2, and 2012 SP1 does not properly control use of stack memory for processing of T-SQL batch commands, which allows remote authenticated users to cause a denial of service (daemon hang) via a crafted T-SQL statement, aka "Microsoft SQL...
Microsoft Sql Server 2008
Microsoft Sql Server 2012
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
firewall
CVE-2024-35649
stored XSS
CVE-2022-28654
CVE-2020-35153
CVE-2024-27348
CVE-2022-28652
local users
CVE-2017-3506
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »