Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sql server vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-27298
parse-server is a Parse Server for Node.js / Express. This vulnerability allows SQL injection when Parse Server is configured to use the PostgreSQL database. The vulnerability has been fixed in 6.5.0 and 7.0.0-alpha.20.
NA
CVE-2023-49931
An issue exists in Couchbase Server prior to 7.2.4. SQL++ cURL calls to /diag/eval are not sufficiently restricted.
NA
CVE-2023-49932
An issue exists in Couchbase Server prior to 7.2.4. An attacker can bypass SQL++ N1QL cURL host restrictions.
NA
CVE-2023-4537
Comarch ERP XL client is vulnerable to MS SQL protocol downgrade request from a server side, what could lead to an unencrypted communication vulnerable to data interception and modification. This issue affects ERP XL: from 2020.2.2 up to and including 2023.2.
1 Github repository
8.8
CVSSv3
CVE-2024-21420
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
8.8
CVSSv3
CVE-2024-21350
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
Microsoft Windows Server 2012 R2
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2008 -
Microsoft Windows Server 2012 -
Microsoft Windows 11 23h2
Microsoft Windows 10 22h2
Microsoft Windows 11 22h2
Microsoft Windows 10 21h2
Microsoft Windows 11 21h2
Microsoft Windows Server 2022
Microsoft Windows Server 2019
Microsoft Windows 10 1809
Microsoft Windows Server 2016
Microsoft Windows 10 1607
Microsoft Windows 10 1507
Microsoft Windows Server 2022 23h2
8.8
CVSSv3
CVE-2024-21352
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
Microsoft Windows Server 2012 R2
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2008 -
Microsoft Windows Server 2012 -
Microsoft Windows 11 23h2
Microsoft Windows 10 22h2
Microsoft Windows 11 22h2
Microsoft Windows 10 21h2
Microsoft Windows 11 21h2
Microsoft Windows Server 2022
Microsoft Windows Server 2019
Microsoft Windows 10 1809
Microsoft Windows Server 2016
Microsoft Windows 10 1607
Microsoft Windows 10 1507
Microsoft Windows Server 2022 23h2
8.8
CVSSv3
CVE-2024-21358
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
Microsoft Windows Server 2012 R2
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2008 -
Microsoft Windows 11 23h2
Microsoft Windows 10 22h2
Microsoft Windows 11 22h2
Microsoft Windows 10 21h2
Microsoft Windows 11 21h2
Microsoft Windows Server 2022
Microsoft Windows Server 2019
Microsoft Windows 10 1809
Microsoft Windows Server 2016
Microsoft Windows 10 1607
Microsoft Windows 10 1507
Microsoft Windows Server 2022 23h2
Microsoft Windows Server 2012
8.8
CVSSv3
CVE-2024-21359
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
Microsoft Windows Server 2012 R2
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2008 -
Microsoft Windows Server 2012 -
Microsoft Windows 11 23h2
Microsoft Windows 10 22h2
Microsoft Windows 11 22h2
Microsoft Windows 10 21h2
Microsoft Windows 11 21h2
Microsoft Windows Server 2022
Microsoft Windows Server 2019
Microsoft Windows 10 1809
Microsoft Windows Server 2016
Microsoft Windows 10 1607
Microsoft Windows 10 1507
Microsoft Windows Server 2022 23h2
8.8
CVSSv3
CVE-2024-21361
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
Microsoft Windows Server 2012 R2
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2008 -
Microsoft Windows Server 2012 -
Microsoft Windows 11 23h2
Microsoft Windows 10 22h2
Microsoft Windows 11 22h2
Microsoft Windows 10 21h2
Microsoft Windows 11 21h2
Microsoft Windows Server 2022
Microsoft Windows Server 2019
Microsoft Windows 10 1809
Microsoft Windows Server 2016
Microsoft Windows 10 1607
Microsoft Windows 10 1507
Microsoft Windows Server 2022 23h2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-20065
open redirect
CVE-2024-1086
path traversal
CVE-2024-29825
XXE
CVE-2024-29822
CVE-2024-20696
CVE-2024-3564
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »