Microsoft: >> Sql Server Management Studio >> 17.5 Security Vulnerabilities
Uncontrolled search path element in Visual Studio Tools for Applications and SQL Server Management Studio allows an authorized attacker to elevate privileges locally.
CVSS Score
7.3
EPSS Score
0.001
Published
2025-04-12
A denial of service vulnerability exists when Microsoft SQL Server Management Studio (SSMS) improperly handles files. An attacker could exploit the vulnerability to trigger a denial of service.
To exploit the vulnerability, an attacker would first require execution on the victim system.
The security update addresses the vulnerability by ensuring Microsoft SQL Server Management Studio properly handles files.
CVSS Score
5.3
EPSS Score
0.008
Published
2020-08-17