| CVE Number | Vulnerability | Product | Severity | Date |
|---|---|---|---|---|
| CVE-2024-37341 | Microsoft SQL Server Elevation of Privilege Vulnerability | Microsoft SQL Server | High | 14-11-2024 |
Technical Information
An elevation of privilege vulnerability where an attacker after successfully exploiting this vulnerability could gain administrator privileges.
Patch release date: Oct 08, 2024
Further information on this vulnerability is available at: CVE-2024-37341
https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2024-37341
Affected Software
Microsoft SQL Server 2022 for x64-based Systems (CU 15),Microsoft SQL Server 2019 for x64-based Systems (CU 28),
Microsoft SQL Server 2022 for x64-based Systems (GDR),
Microsoft SQL Server 2017 for x64-based Systems (CU 31),
Microsoft SQL Server 2016 for x64-based Systems Service Pack 3 Azure Connect Feature Pack,
Microsoft SQL Server 2016 for x64-based Systems Service Pack 3 (GDR),
Microsoft SQL Server 2019 for x64-based Systems (GDR),
Microsoft SQL Server 2017 for x64-based Systems (GDR)