Shodan
Vulnerabilities
Vulnerable Software
Microsoft:  >> Sql Server 2022  >> 16.0.4125.3  Security Vulnerabilities
CVE-2025-47954
Improper neutralization of special elements used in an sql command ('sql injection') in SQL Server allows an authorized attacker to elevate privileges over a network.
CVSS Score
8.8
EPSS Score
0.001
Published
2025-08-12
CVE-2025-24999
Improper access control in SQL Server allows an authorized attacker to elevate privileges over a network.
CVSS Score
8.8
EPSS Score
0.001
Published
2025-08-12
CVE-2025-49717
Heap-based buffer overflow in SQL Server allows an authorized attacker to execute code over a network.
CVSS Score
8.5
EPSS Score
0.001
Published
2025-07-08
CVE-2025-49718
Use of uninitialized resource in SQL Server allows an unauthorized attacker to disclose information over a network.
CVSS Score
7.5
EPSS Score
0.019
Published
2025-07-08
CVE-2025-49719
Improper input validation in SQL Server allows an unauthorized attacker to disclose information over a network.
CVSS Score
7.5
EPSS Score
0.007
Published
2025-07-08
CVE-2024-49043
Microsoft.SqlServer.XEvent.Configuration.dll Remote Code Execution Vulnerability
CVSS Score
7.8
EPSS Score
0.004
Published
2024-11-12
CVE-2024-49021
Microsoft SQL Server Remote Code Execution Vulnerability
CVSS Score
7.8
EPSS Score
0.009
Published
2024-11-12
CVE-2024-37965
Microsoft SQL Server Elevation of Privilege Vulnerability
CVSS Score
8.8
EPSS Score
0.048
Published
2024-09-10
CVE-2024-37966
Microsoft SQL Server Native Scoring Information Disclosure Vulnerability
CVSS Score
7.1
EPSS Score
0.035
Published
2024-09-10
CVE-2024-37980
Microsoft SQL Server Elevation of Privilege Vulnerability
CVSS Score
8.8
EPSS Score
0.034
Published
2024-09-10


Products
Pricing
Contact Us

Shodan ® - All rights reserved