Skip to main content

Odbc Driver For Sql Server CVE-2023-36785

HIGH
Integer Underflow (CWE-191)
2023-10-10 secure@microsoft.com
7.8
CVSS 3.1 · Vendor: microsoft
Share

Severity by source

Vendor (microsoft) PRIMARY
7.8 HIGH
AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Primary rating from Vendor (microsoft) · only source for this CVE.

CVSS VectorVendor: microsoft

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Attack Vector
Local
Attack Complexity
Low
Privileges Required
None
User Interaction
Required
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

Lifecycle Timeline

1
CVE Published
Oct 10, 2023 - 18:15 cve.org
HIGH 7.8

DescriptionCVE.org

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

AnalysisAI

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity.

Technical ContextAI

This vulnerability is classified under CWE-191. Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability Affected products include: Microsoft Odbc Driver For Sql Server, Microsoft Sql Server.

RemediationAI

A vendor patch is available. Apply the latest security update as soon as possible. Apply vendor patches when available. Implement network segmentation and monitoring as interim mitigations.

CVE-2024-29043 HIGH
8.8 Apr 09

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability. Rated high severity (CVSS 8.8), this vulnerabi

CVE-2024-28943 HIGH
8.8 Apr 09

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability. Rated high severity (CVSS 8.8), this vulnerabi

CVE-2024-28941 HIGH
8.8 Apr 09

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability. Rated high severity (CVSS 8.8), this vulnerabi

CVE-2024-28938 HIGH
8.8 Apr 09

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability. Rated high severity (CVSS 8.8), this vulnerabi

CVE-2024-28937 HIGH
8.8 Apr 09

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability. Rated high severity (CVSS 8.8), this vulnerabi

CVE-2024-28936 HIGH
8.8 Apr 09

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability. Rated high severity (CVSS 8.8), this vulnerabi

CVE-2024-28935 HIGH
8.8 Apr 09

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability. Rated high severity (CVSS 8.8), this vulnerabi

CVE-2024-28934 HIGH
8.8 Apr 09

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability. Rated high severity (CVSS 8.8), this vulnerabi

CVE-2024-28933 HIGH
8.8 Apr 09

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability. Rated high severity (CVSS 8.8), this vulnerabi

CVE-2024-28932 HIGH
8.8 Apr 09

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability. Rated high severity (CVSS 8.8), this vulnerabi

CVE-2024-28931 HIGH
8.8 Apr 09

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability. Rated high severity (CVSS 8.8), this vulnerabi

CVE-2024-28930 HIGH
8.8 Apr 09

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability. Rated high severity (CVSS 8.8), this vulnerabi

Share

CVE-2023-36785 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy