Microsoft: >> Sql Server 2022 >> 16.0.1135.2 Security Vulnerabilities
Improper neutralization of special elements used in an sql command ('sql injection') in SQL Server allows an authorized attacker to elevate privileges over a network.
CVSS Score
8.8
EPSS Score
0.001
Published
2025-08-12
Improper access control in SQL Server allows an authorized attacker to elevate privileges over a network.
CVSS Score
8.8
EPSS Score
0.001
Published
2025-08-12
Heap-based buffer overflow in SQL Server allows an authorized attacker to execute code over a network.
CVSS Score
8.5
EPSS Score
0.001
Published
2025-07-08
Use of uninitialized resource in SQL Server allows an unauthorized attacker to disclose information over a network.
CVSS Score
7.5
EPSS Score
0.019
Published
2025-07-08
Improper input validation in SQL Server allows an unauthorized attacker to disclose information over a network.
CVSS Score
7.5
EPSS Score
0.007
Published
2025-07-08
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
CVSS Score
8.8
EPSS Score
0.03
Published
2024-07-09
Page 2