| CVE Number | Vulnerability | Product | Severity | Date |
|---|---|---|---|---|
| CVE-2022-29143 | Microsoft SQL Server Remote Code Execution Vulnerability | Microsoft SQL Server | Important | 30-05-2024 |
Technical Information
A remote code execution vulnerability in Microsoft SQL Server where an authenticated attacker could exploit the vulnerability by executing a specially crafted query using $ partition against a table with a Column Store index.
Patch Release Date: Jun 14, 2022
Further information on this vulnerability is available at: CVE-2022-29143
Affected Software
Microsoft SQL Server 2016 for x64-based Systems Service Pack 3 Azure Connectivity Pack,Microsoft SQL Server 2016 for x64-based Systems Service Pack 3,
Microsoft SQL Server 2016 for x64-based Systems Service Pack 2,
Microsoft SQL Server 2017 for x64-based Systems,
Microsoft SQL Server 2019 for x64-based Systems,
Microsoft SQL Server 2014 Service Pack 3 for x64-based Systems,
Microsoft SQL Server 2014 Service Pack 3 for 32-bit Systems