| CVE Number | Vulnerability | Product | Severity | Date |
|---|---|---|---|---|
| CVE-2026-20803 | Microsoft SQL Server Elevation of Privilege Vulnerability | Microsoft SQL Server | High | 05-02-2026 |
Technical Information
An authorized attacker could elevate privileges over a network due to missing authentication for critical function in SQL Server.
Patch release date: Jan 13, 2026
Further information on this vulnerability is available at : CVE-2026-20803
Affected Software
Microsoft SQL Server 2022 for x64-based Systems (GDR) < 16.0.1165.1,Microsoft SQL Server 2025 for x64-based Systems (GDR) < 17.0.1050.2,
Microsoft SQL Server 2022 for x64-based Systems (CU 22) < 16.0.4230.2