Threat Encyclopedia

Microsoft SQL Server Remote Code Execution Vulnerability

description-logoDescription

Microsoft Security Update to address the remote code execution vulnerability found in Microsoft SQL Server 2014 Service Pack 3 for 32-bit Systems (GDR), Microsoft SQL Server 2019 for x64-based Systems (CU 16), Microsoft SQL Server 2016 for x64-based Systems Service Pack 2 (CU 17), Microsoft SQL Server 2017 for x64-based Systems (CU 29), Microsoft SQL Server 2016 for x64-based Systems Service Pack 3 Azure Connectivity Pack, Microsoft SQL Server 2016 for x64-based Systems Service Pack 3 (GDR), Microsoft SQL Server 2014 Service Pack 3 for 32-bit Systems (CU 4), Microsoft SQL Server 2014 Service Pack 3 for x64-based Systems (GDR), Microsoft SQL Server 2017 for x64-based Systems (GDR), Microsoft SQL Server 2019 for x64-based Systems (GDR), Microsoft SQL Server 2016 for x64-based Systems Service Pack 2 (GDR), Microsoft SQL Server 2014 Service Pack 3 for x64-based Systems (CU 4)

affected-products-logoAffected Applications

Microsoft SQL Server 2014 Service Pack 3 for 32-bit Systems (GDR)
Microsoft SQL Server 2019 for x64-based Systems (CU 16)
Microsoft SQL Server 2016 for x64-based Systems Service Pack 2 (CU 17)
Microsoft SQL Server 2017 for x64-based Systems (CU 29)
Microsoft SQL Server 2016 for x64-based Systems Service Pack 3 Azure Connectivity Pack
Microsoft SQL Server 2016 for x64-based Systems Service Pack 3 (GDR)
Microsoft SQL Server 2014 Service Pack 3 for 32-bit Systems (CU 4)
Microsoft SQL Server 2014 Service Pack 3 for x64-based Systems (GDR)
Microsoft SQL Server 2017 for x64-based Systems (GDR)
Microsoft SQL Server 2019 for x64-based Systems (GDR)
Microsoft SQL Server 2016 for x64-based Systems Service Pack 2 (GDR)
Microsoft SQL Server 2014 Service Pack 3 for x64-based Systems (CU 4)

CVE References

CVE-2022-29143

Telemetry logoTelemetry