Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microsoft sql server 2022 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2022-34005
An issue exists in TitanFTP (aka Titan FTP) NextGen prior to 1.2.1050. There is Remote Code Execution due to a hardcoded password for the sa account on the Microsoft SQL Express 2019 instance installed by default during TitanFTP NextGen installation, aka NX-I674 (sub-issue 1). NO...
Southrivertech Titan Ftp Server Nextgen
7.5
CVSSv2
CVE-2022-30335
Bonanza Wealth Management System (BWM) 7.3.2 allows SQL injection via the login form. Users who supply the application with a SQL injection payload in the User Name textbox could collect all passwords in encrypted format from the Microsoft SQL Server component.
Wealth Bonanza Wealth Management System 7.3.2
7.2
CVSSv2
CVE-2022-34006
An issue exists in TitanFTP (aka Titan FTP) NextGen prior to 1.2.1050. When installing, Microsoft SQL Express 2019 installs by default with an SQL instance running as SYSTEM with BUILTIN\Users as sysadmin, thus enabling unprivileged Windows users to execute commands locally as NT...
Southrivertech Titan Ftp Server Nextgen
6
CVSSv2
CVE-2022-29143
Microsoft SQL Server Remote Code Execution Vulnerability
Microsoft Sql Server 2014
Microsoft Sql Server 2016
Microsoft Sql Server 2017
Microsoft Sql Server 2019
5
CVSSv2
CVE-2014-0160
The (1) TLS and (2) DTLS implementations in OpenSSL 1.0.1 prior to 1.0.1g do not properly handle Heartbeat Extension packets, which allows remote malicious users to obtain sensitive information from process memory via crafted packets that trigger a buffer over-read, as demonstrat...
Openssl Openssl
Filezilla-project Filezilla Server
Siemens Application Processing Engine Firmware 2.0
Siemens Cp 1543-1 Firmware 1.1
Siemens Simatic S7-1500 Firmware 1.5
Siemens Simatic S7-1500t Firmware 1.5
Siemens Elan-8.2
Siemens Wincc Open Architecture 3.12
Intellian V100 Firmware 1.20
Intellian V100 Firmware 1.21
Intellian V100 Firmware 1.24
Intellian V60 Firmware 1.15
Intellian V60 Firmware 1.25
Mitel Micollab 6.0
Mitel Micollab 7.0
Mitel Micollab 7.1
Mitel Micollab 7.2
Mitel Micollab 7.3.0.104
Mitel Micollab 7.3
Mitel Mivoice 1.1.3.3
Mitel Mivoice 1.2.0.11
Mitel Mivoice 1.3.2.2
4 EDB exploits
2 Nmap scripts
308 Github repositories
4 Articles
4.6
CVSSv2
CVE-2022-23276
SQL Server for Linux Containers Elevation of Privilege Vulnerability
Microsoft Sql Server 2019
NA
CVE-2024-21350
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
Microsoft Windows Server 2012 R2
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2008 -
Microsoft Windows Server 2012 -
Microsoft Windows 11 23h2
Microsoft Windows 10 22h2
Microsoft Windows 11 22h2
Microsoft Windows 10 21h2
Microsoft Windows 11 21h2
Microsoft Windows Server 2022
Microsoft Windows Server 2019
Microsoft Windows 10 1809
Microsoft Windows Server 2016
Microsoft Windows 10 1607
Microsoft Windows 10 1507
Microsoft Windows Server 2022 23h2
NA
CVE-2024-21352
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
Microsoft Windows Server 2012 R2
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2008 -
Microsoft Windows Server 2012 -
Microsoft Windows 11 23h2
Microsoft Windows 10 22h2
Microsoft Windows 11 22h2
Microsoft Windows 10 21h2
Microsoft Windows 11 21h2
Microsoft Windows Server 2022
Microsoft Windows Server 2019
Microsoft Windows 10 1809
Microsoft Windows Server 2016
Microsoft Windows 10 1607
Microsoft Windows 10 1507
Microsoft Windows Server 2022 23h2
NA
CVE-2024-21358
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
Microsoft Windows Server 2012 R2
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2008 -
Microsoft Windows 11 23h2
Microsoft Windows 10 22h2
Microsoft Windows 11 22h2
Microsoft Windows 10 21h2
Microsoft Windows 11 21h2
Microsoft Windows Server 2022
Microsoft Windows Server 2019
Microsoft Windows 10 1809
Microsoft Windows Server 2016
Microsoft Windows 10 1607
Microsoft Windows 10 1507
Microsoft Windows Server 2022 23h2
Microsoft Windows Server 2012
NA
CVE-2024-21359
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
Microsoft Windows Server 2012 R2
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2008 -
Microsoft Windows Server 2012 -
Microsoft Windows 11 23h2
Microsoft Windows 10 22h2
Microsoft Windows 11 22h2
Microsoft Windows 10 21h2
Microsoft Windows 11 21h2
Microsoft Windows Server 2022
Microsoft Windows Server 2019
Microsoft Windows 10 1809
Microsoft Windows Server 2016
Microsoft Windows 10 1607
Microsoft Windows 10 1507
Microsoft Windows Server 2022 23h2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »