Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sql server 2017 vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2023-21704
Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability
Microsoft Sql Server 2014
Microsoft Sql Server 2017
Microsoft Sql Server 2019
Microsoft Sql Server 2016
Microsoft Sql Server 2022
7.8
CVSSv3
CVE-2023-21718
Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability
Microsoft Sql Server 2008
Microsoft Sql Server 2014
Microsoft Sql Server 2017
Microsoft Sql Server 2012
Microsoft Sql Server 2019
Microsoft Sql Server 2016
Microsoft Sql Server 2022
Microsoft Sql Server 2008 R2
7.5
CVSSv3
CVE-2022-29143
Microsoft SQL Server Remote Code Execution Vulnerability
Microsoft Sql Server 2014
Microsoft Sql Server 2016
Microsoft Sql Server 2017
Microsoft Sql Server 2019
7.5
CVSSv3
CVE-2020-25696
A flaw was found in the psql interactive terminal of PostgreSQL in versions prior to 13.1, prior to 12.5, prior to 11.10, prior to 10.15, prior to 9.6.20 and prior to 9.5.24. If an interactive psql session uses \gset when querying a compromised server, the attacker can execute ar...
Postgresql Postgresql
Debian Debian Linux 9.0
7.5
CVSSv3
CVE-2017-8516
Microsoft SQL Server Analysis Services in Microsoft SQL Server 2012, Microsoft SQL Server 2014, and Microsoft SQL Server 2016 allows an information disclosure vulnerability when it improperly enforces permissions, aka "Microsoft SQL Server Analysis Services Information Discl...
Microsoft Sql Server 2016
Microsoft Sql Server 2012
Microsoft Sql Server 2014
1 Article
7.5
CVSSv3
CVE-2017-1183
IBM Tivoli Monitoring Portal v6 could allow a local (network adjacent) malicious user to modify SQL commands to the Portal Server, when default client-server communications, HTTP, are being used. IBM X-Force ID: 123494.
Ibm Tivoli Monitoring 6.2.3.5
Ibm Tivoli Monitoring 6.3.0.7
Ibm Tivoli Monitoring 6.2.2.9
7.5
CVSSv3
CVE-2017-5598
An issue exists in eClinicalWorks healow@work 8.0 build 8. This is a blind SQL injection within the EmployeePortalServlet, which can be exploited by un-authenticated users via an HTTP POST request and which can be used to dump database data out to a malicious server, using an out...
Eclinicalworks Patient Portal 8.0
7.3
CVSSv3
CVE-2023-23384
Microsoft SQL Server Remote Code Execution Vulnerability
Microsoft Sql Server 2008
Microsoft Sql Server 2014
Microsoft Sql Server 2017
Microsoft Sql Server 2012
Microsoft Sql Server 2019
Microsoft Sql Server 2016
Microsoft Sql Server 2022
7.2
CVSSv3
CVE-2017-3486
Vulnerability in the SQL*Plus component of Oracle Database Server. Supported versions that are affected are 11.2.0.4 and 12.1.0.2. Difficult to exploit vulnerability allows high privileged attacker having Local Logon privilege with logon to the infrastructure where SQL*Plus execu...
Oracle Sql Plus 12.1.0.2
Oracle Sql Plus 11.2.0.4
6.5
CVSSv3
CVE-2019-0819
An information disclosure vulnerability exists in Microsoft SQL Server Analysis Services when it improperly enforces metadata permissions, aka 'Microsoft SQL Server Analysis Services Information Disclosure Vulnerability'.
Microsoft Sql Server 2017
1 Article
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »