Vulnerabilities > CVE-2023-36417 - Unspecified vulnerability in Microsoft OLE DB Driver for SQL Server and SQL Server

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

NVD

Published: 2023-10-10

Updated: 2023-11-02

Summary

Microsoft SQL OLE DB Remote Code Execution Vulnerability

Part	Description	Count
Application	Microsoft Microsoft SQL Server 2019 Microsoft SQL Server 2022 Microsoft OLE DB Driver FOR SQL Server 18.0.2 Microsoft OLE DB Driver FOR SQL Server 18.1.0 Microsoft OLE DB Driver FOR SQL Server 18.2.1 Microsoft OLE DB Driver FOR SQL Server 18.2.2 Microsoft OLE DB Driver FOR SQL Server 18.2.3 Microsoft OLE DB Driver FOR SQL Server 18.3.0 Microsoft OLE DB Driver FOR SQL Server 18.4.0 Microsoft OLE DB Driver FOR SQL Server 18.5.0 Microsoft OLE DB Driver FOR SQL Server 18.6.0 Microsoft OLE DB Driver FOR SQL Server 18.6.3 Microsoft OLE DB Driver FOR SQL Server 18.6.4 Microsoft OLE DB Driver FOR SQL Server 18.6.5 Microsoft OLE DB Driver FOR SQL Server 18.6.6 Microsoft OLE DB Driver FOR SQL Server 18.6.0006.0 Microsoft OLE DB Driver FOR SQL Server 19.0.0 Microsoft OLE DB Driver FOR SQL Server 19.1.0 Microsoft OLE DB Driver FOR SQL Server 19.2.0 Microsoft OLE DB Driver FOR SQL Server 19.3.0 Microsoft OLE DB Driver FOR SQL Server 19.3.1 Microsoft OLE DB Driver FOR SQL Server 19.3.0001.0	22