Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microsoft sql server 2019 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv3
CVE-2020-1044
<p>A security feature bypass vulnerability exists in SQL Server Reporting Services (SSRS) when the server improperly validates attachments uploaded to reports. An attacker who successfully exploited this vulnerability could upload file types that were disallowed by an admin...
Microsoft Sql Server Reporting Services 2017
Microsoft Sql Server Reporting Services 2019
7.3
CVSSv3
CVE-2023-21568
Microsoft SQL Server Integration Service (VS extension) Remote Code Execution Vulnerability
Microsoft Sql Server 2022 Integration Services -
Microsoft Sql Server 2019 Integration Services -
6.1
CVSSv3
CVE-2019-1332
A cross-site scripting (XSS) vulnerability exists when Microsoft SQL Server Reporting Services (SSRS) does not properly sanitize a specially-crafted web request to an affected SSRS server, aka 'Microsoft SQL Server Reporting Services XSS Vulnerability'.
Microsoft Power Bi Report Server -
Microsoft Sql Server 2017 Reporting Services -
Microsoft Sql Server 2019 Reporting Services -
1 Github repository
1 Article
6.5
CVSSv3
CVE-2019-1313
An information disclosure vulnerability exists in Microsoft SQL Server Management Studio (SSMS) when it improperly enforces permissions, aka 'SQL Server Management Studio Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-1376.
Microsoft Sql Server Management Studio 18.3
Microsoft Sql Server Management Studio 18.3.1
1 Article
8.8
CVSSv3
CVE-2023-38169
Microsoft SQL OLE DB Remote Code Execution Vulnerability
Microsoft Sql Server 2019
Microsoft Sql Server 2022
Microsoft Odbc Driver For Sql Server 17.10.3.1
Microsoft Odbc Driver For Sql Server 18.1.2.1
Microsoft Odbc Driver For Sql Server 17.0.1.1
Microsoft Ole Db Driver For Sql Server 19.0.0
Microsoft Ole Db Driver For Sql Server 19.1.0
Microsoft Ole Db Driver For Sql Server 19.2.0
Microsoft Ole Db Driver For Sql Server 19.3.0
Microsoft Odbc Driver For Sql Server 17.10.4.1
Microsoft Odbc Driver For Sql Server 18.0.1.1
Microsoft Odbc Driver For Sql Server 18.2.1.1
Microsoft Ole Db Driver For Sql Server 18.0.2
Microsoft Ole Db Driver For Sql Server 18.1.0
Microsoft Ole Db Driver For Sql Server 18.2.1
Microsoft Ole Db Driver For Sql Server 18.2.2
Microsoft Ole Db Driver For Sql Server 18.2.3
Microsoft Ole Db Driver For Sql Server 18.3.0
Microsoft Ole Db Driver For Sql Server 18.4.0
Microsoft Ole Db Driver For Sql Server 18.5.0
Microsoft Ole Db Driver For Sql Server 18.6.0
6.5
CVSSv3
CVE-2019-0819
An information disclosure vulnerability exists in Microsoft SQL Server Analysis Services when it improperly enforces metadata permissions, aka 'Microsoft SQL Server Analysis Services Information Disclosure Vulnerability'.
Microsoft Sql Server 2017
1 Article
6.5
CVSSv3
CVE-2019-1376
An information disclosure vulnerability exists in Microsoft SQL Server Management Studio (SSMS) when it improperly enforces permissions, aka 'SQL Server Management Studio Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-1313.
Microsoft Sql Server Management Studio 18.3.1
1 Article
5.4
CVSSv3
CVE-2019-1137
A cross-site-scripting (XSS) vulnerability exists when Microsoft Exchange Server does not properly sanitize a specially crafted web request to an affected Exchange server, aka 'Microsoft Exchange Server Spoofing Vulnerability'.
Microsoft Exchange Server 2013
Microsoft Exchange Server 2016
Microsoft Exchange Server 2019
2 Articles
9.8
CVSSv3
CVE-2019-0785
A memory corruption vulnerability exists in the Windows Server DHCP service when an attacker sends specially crafted packets to a DHCP failover server, aka 'Windows DHCP Server Remote Code Execution Vulnerability'.
Microsoft Windows Server 2012 -
Microsoft Windows Server 2012 R2
Microsoft Windows Server 2016 -
Microsoft Windows Server 2016 1903
Microsoft Windows Server 2016 1803
Microsoft Windows Server 2019 -
1 Github repository
2 Articles
9.1
CVSSv3
CVE-2021-26855
Microsoft Exchange Server Remote Code Execution Vulnerability
Microsoft Exchange Server 2016
Microsoft Exchange Server 2013
Microsoft Exchange Server 2019
2 Metasploit modules
66 Github repositories
13 Articles
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »