CVE-2024-43474

CVE Database · CVE-2024-43474

· HIGHAnalyzed

CVSS v3.1

7.6

EPSS

1.26%

Published

Sep 10, 2024

Modified

Jan 7, 2025

Public PoC / Exploit (1)

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Microsoft SQL Server Information Disclosure Vulnerability

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L

Weaknesses (CWE)

CWE-170

Affected Products (3)

microsoft · sql_server_2017 (up to 14.0.2060.1)vulnerable

microsoft · sql_server_2017 (up to 14.0.3475.1)vulnerable

microsoft · sql_server_2019 (up to 15.0.2120.1)vulnerable

References (1)

Vendor Advisory