Skip to main content

Sql Server Reporting Services

2 CVEs product

Monthly

CVE-2020-1044 MEDIUM PATCH This Month

<p>A security feature bypass vulnerability exists in SQL Server Reporting Services (SSRS) when the server improperly validates attachments uploaded to reports. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity.

Authentication Bypass Sql Server Reporting Services
NVD
CVSS 3.1
4.3
EPSS
1.9%
CVE-2012-2552 MEDIUM This Month

Cross-site scripting (XSS) vulnerability in the SQL Server Report Manager in Microsoft SQL Server 2000 Reporting Services SP2 and SQL Server 2005 SP4, 2008 SP2 and SP3, 2008 R2 SP1, and 2012 allows. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. Epss exploitation probability 44.4% and no vendor patch available.

Microsoft XSS Sql Server Sql Server Reporting Services
NVD
CVSS 2.0
4.3
EPSS
44.4%
EPSS 2% CVSS 4.3
MEDIUM PATCH This Month

<p>A security feature bypass vulnerability exists in SQL Server Reporting Services (SSRS) when the server improperly validates attachments uploaded to reports. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity.

Authentication Bypass Sql Server Reporting Services
NVD
EPSS 44% CVSS 4.3
MEDIUM This Month

Cross-site scripting (XSS) vulnerability in the SQL Server Report Manager in Microsoft SQL Server 2000 Reporting Services SP2 and SQL Server 2005 SP4, 2008 SP2 and SP3, 2008 R2 SP1, and 2012 allows. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. Epss exploitation probability 44.4% and no vendor patch available.

Microsoft XSS Sql Server +1
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy