Vulnerability-Lookup - Search a vulnerability

Microsoft SQL Server 2019 (CU 22)

Version: 15.0.0 < 15.0.4326.1

Microsoft	Microsoft SQL Server 2022 (CU 8)	Version: 15.0.0 < 16.0.4080.1
Microsoft	Microsoft SQL Server 2017 (GDR)	Version: 14.0.0 < 14.0.2052.1
Microsoft	Microsoft SQL Server 2014 Service Pack 3 (GDR)	Version: 12.0.0 < 12.0.6179.1
Microsoft	Microsoft SQL Server 2014 Service Pack 3 (CU 4)	Version: 12.0.0 < 12.0.6449.1
Microsoft	Microsoft SQL Server 2019 (GDR)	Version: 15.0.0 < 15.0.2104.1
Microsoft	Microsoft SQL Server 2016 Service Pack 3 (GDR)	Version: 13.0.0 < 13.0.6435.1
Microsoft	Microsoft SQL Server 2016 Service Pack 3 Azure Connect Feature Pack	Version: 13.0.0 < 13.0.7029.3
Microsoft	Microsoft SQL Server 2017 (CU 31)	Version: 14.0.0 < 14.0.3465.1
Microsoft	Microsoft SQL Server 2022 (GDR)	Version: 16.0.0 < 16.0.1105.1
Microsoft	Microsoft OLE DB Driver 19 for SQL Server	Version: 19.0.0 < 19.3.0002.0
Microsoft	Microsoft OLE DB Driver 18 for SQL Server	Version: 18.0.0 < 18.6.0007.0
Microsoft	Microsoft ODBC Driver 17 for SQL Server on Windows	Version: 17.0.0.0 < 17.10.5.1
Microsoft	Microsoft ODBC Driver 17 for SQL Server on Linux	Version: 17.0.0.0 < 17.10.5.1
Microsoft	Microsoft ODBC Driver 17 for SQL Server on MacOS	Version: 17.0.0.0 < 17.10.5.1
Microsoft	Microsoft ODBC Driver 18 for SQL Server on Windows	Version: 18.0.0.0 < 18.3.2.1
Microsoft	Microsoft ODBC Driver 18 for SQL Server on Linux	Version: 18.0.0.0 < 18.3.2.1
Microsoft	Microsoft ODBC Driver 18 for SQL Server on MacOS	Version: 18.0.0.0 < 18.3.2.1

Show details on NVD website

To clipboard

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-02T16:52:54.388Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  name: "Microsoft SQL Server Denial of Service Vulnerability",
                  tags: [
                     "vendor-advisory",
                     "x_transferred",
                  ],
                  url: "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36728",
               },
            ],
            title: "CVE Program Container",
         },
         {
            metrics: [
               {
                  other: {
                     content: {
                        id: "CVE-2023-36728",
                        options: [
                           {
                              Exploitation: "none",
                           },
                           {
                              Automatable: "no",
                           },
                           {
                              "Technical Impact": "partial",
                           },
                        ],
                        role: "CISA Coordinator",
                        timestamp: "2025-02-26T21:49:21.915063Z",
                        version: "2.0.3",
                     },
                     type: "ssvc",
                  },
               },
            ],
            providerMetadata: {
               dateUpdated: "2025-02-27T20:44:34.088Z",
               orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0",
               shortName: "CISA-ADP",
            },
            title: "CISA ADP Vulnrichment",
         },
      ],
      cna: {
         affected: [
            {
               platforms: [
                  "x64-based Systems",
               ],
               product: "Microsoft SQL Server 2019 (CU 22)",
               vendor: "Microsoft",
               versions: [
                  {
                     lessThan: "15.0.4326.1",
                     status: "affected",
                     version: "15.0.0",
                     versionType: "custom",
                  },
               ],
            },
            {
               platforms: [
                  "x64-based Systems",
               ],
               product: "Microsoft SQL Server 2022 (CU 8)",
               vendor: "Microsoft",
               versions: [
                  {
                     lessThan: "16.0.4080.1",
                     status: "affected",
                     version: "15.0.0",
                     versionType: "custom",
                  },
               ],
            },
            {
               platforms: [
                  "x64-based Systems",
               ],
               product: "Microsoft SQL Server 2017 (GDR)",
               vendor: "Microsoft",
               versions: [
                  {
                     lessThan: "14.0.2052.1",
                     status: "affected",
                     version: "14.0.0",
                     versionType: "custom",
                  },
               ],
            },
            {
               platforms: [
                  "x64-based Systems",
                  "32-bit Systems",
               ],
               product: "Microsoft SQL Server 2014 Service Pack 3 (GDR)",
               vendor: "Microsoft",
               versions: [
                  {
                     lessThan: "12.0.6179.1",
                     status: "affected",
                     version: "12.0.0",
                     versionType: "custom",
                  },
               ],
            },
            {
               platforms: [
                  "32-bit Systems",
                  "x64-based Systems",
               ],
               product: "Microsoft SQL Server 2014 Service Pack 3 (CU 4)",
               vendor: "Microsoft",
               versions: [
                  {
                     lessThan: "12.0.6449.1",
                     status: "affected",
                     version: "12.0.0",
                     versionType: "custom",
                  },
               ],
            },
            {
               platforms: [
                  "x64-based Systems",
               ],
               product: "Microsoft SQL Server 2019 (GDR)",
               vendor: "Microsoft",
               versions: [
                  {
                     lessThan: "15.0.2104.1",
                     status: "affected",
                     version: "15.0.0",
                     versionType: "custom",
                  },
               ],
            },
            {
               platforms: [
                  "x64-based Systems",
               ],
               product: "Microsoft SQL Server 2016 Service Pack 3 (GDR)",
               vendor: "Microsoft",
               versions: [
                  {
                     lessThan: "13.0.6435.1",
                     status: "affected",
                     version: "13.0.0",
                     versionType: "custom",
                  },
               ],
            },
            {
               platforms: [
                  "x64-based Systems",
               ],
               product: "Microsoft SQL Server 2016 Service Pack 3 Azure Connect Feature Pack",
               vendor: "Microsoft",
               versions: [
                  {
                     lessThan: "13.0.7029.3",
                     status: "affected",
                     version: "13.0.0",
                     versionType: "custom",
                  },
               ],
            },
            {
               platforms: [
                  "x64-based Systems",
               ],
               product: "Microsoft SQL Server 2017 (CU 31)",
               vendor: "Microsoft",
               versions: [
                  {
                     lessThan: "14.0.3465.1",
                     status: "affected",
                     version: "14.0.0",
                     versionType: "custom",
                  },
               ],
            },
            {
               platforms: [
                  "x64-based Systems",
               ],
               product: "Microsoft SQL Server 2022 (GDR)",
               vendor: "Microsoft",
               versions: [
                  {
                     lessThan: "16.0.1105.1",
                     status: "affected",
                     version: "16.0.0",
                     versionType: "custom",
                  },
               ],
            },
            {
               platforms: [
                  "Unknown",
               ],
               product: "Microsoft OLE DB Driver 19 for SQL Server",
               vendor: "Microsoft",
               versions: [
                  {
                     lessThan: "19.3.0002.0",
                     status: "affected",
                     version: "19.0.0",
                     versionType: "custom",
                  },
               ],
            },
            {
               platforms: [
                  "Unknown",
               ],
               product: "Microsoft OLE DB Driver 18 for SQL Server",
               vendor: "Microsoft",
               versions: [
                  {
                     lessThan: "18.6.0007.0",
                     status: "affected",
                     version: "18.0.0",
                     versionType: "custom",
                  },
               ],
            },
            {
               platforms: [
                  "Unknown",
               ],
               product: "Microsoft ODBC Driver 17 for SQL Server on Windows",
               vendor: "Microsoft",
               versions: [
                  {
                     lessThan: "17.10.5.1",
                     status: "affected",
                     version: "17.0.0.0",
                     versionType: "custom",
                  },
               ],
            },
            {
               platforms: [
                  "Unknown",
               ],
               product: "Microsoft ODBC Driver 17 for SQL Server on Linux",
               vendor: "Microsoft",
               versions: [
                  {
                     lessThan: "17.10.5.1",
                     status: "affected",
                     version: "17.0.0.0",
                     versionType: "custom",
                  },
               ],
            },
            {
               platforms: [
                  "Unknown",
               ],
               product: "Microsoft ODBC Driver 17 for SQL Server on MacOS",
               vendor: "Microsoft",
               versions: [
                  {
                     lessThan: "17.10.5.1",
                     status: "affected",
                     version: "17.0.0.0",
                     versionType: "custom",
                  },
               ],
            },
            {
               platforms: [
                  "Unknown",
               ],
               product: "Microsoft ODBC Driver 18 for SQL Server on Windows",
               vendor: "Microsoft",
               versions: [
                  {
                     lessThan: "18.3.2.1",
                     status: "affected",
                     version: "18.0.0.0",
                     versionType: "custom",
                  },
               ],
            },
            {
               platforms: [
                  "Unknown",
               ],
               product: "Microsoft ODBC Driver 18 for SQL Server on Linux",
               vendor: "Microsoft",
               versions: [
                  {
                     lessThan: "18.3.2.1",
                     status: "affected",
                     version: "18.0.0.0",
                     versionType: "custom",
                  },
               ],
            },
            {
               platforms: [
                  "Unknown",
               ],
               product: "Microsoft ODBC Driver 18 for SQL Server on MacOS",
               vendor: "Microsoft",
               versions: [
                  {
                     lessThan: "18.3.2.1",
                     status: "affected",
                     version: "18.0.0.0",
                     versionType: "custom",
                  },
               ],
            },
         ],
         cpeApplicability: [
            {
               nodes: [
                  {
                     cpeMatch: [
                        {
                           criteria: "cpe:2.3:a:microsoft:sql_server:*:*:*:*:*:*:x64:*",
                           versionEndExcluding: "15.0.4326.1",
                           versionStartIncluding: "15.0.0",
                           vulnerable: true,
                        },
                        {
                           criteria: "cpe:2.3:a:microsoft:sql_server:*:*:*:*:*:*:x64:*",
                           versionEndExcluding: "16.0.4080.1",
                           versionStartIncluding: "15.0.0",
                           vulnerable: true,
                        },
                        {
                           criteria: "cpe:2.3:a:microsoft:sql_server:*:-:*:*:*:*:x64:*",
                           versionEndExcluding: "14.0.2052.1",
                           versionStartIncluding: "14.0.0",
                           vulnerable: true,
                        },
                        {
                           criteria: "cpe:2.3:a:microsoft:sql_server:2014:sp3:*:*:*:*:x64:*",
                           versionEndExcluding: "12.0.6179.1",
                           versionStartIncluding: "12.0.0",
                           vulnerable: true,
                        },
                        {
                           criteria: "cpe:2.3:a:microsoft:sql_server:2014:sp3:*:*:*:*:x86:*",
                           versionEndExcluding: "12.0.6449.1",
                           versionStartIncluding: "12.0.0",
                           vulnerable: true,
                        },
                        {
                           criteria: "cpe:2.3:a:microsoft:sql_server:*:*:*:*:*:*:x64:*",
                           versionEndExcluding: "15.0.2104.1",
                           versionStartIncluding: "15.0.0",
                           vulnerable: true,
                        },
                        {
                           criteria: "cpe:2.3:a:microsoft:sql_server:*:sp3:*:*:*:*:x64:*",
                           versionEndExcluding: "13.0.6435.1",
                           versionStartIncluding: "13.0.0",
                           vulnerable: true,
                        },
                        {
                           criteria: "cpe:2.3:a:microsoft:sql_server:*:sp3:*:*:*:*:x64:*",
                           versionEndExcluding: "13.0.7029.3",
                           versionStartIncluding: "13.0.0",
                           vulnerable: true,
                        },
                        {
                           criteria: "cpe:2.3:a:microsoft:sql_server:*:-:*:*:*:*:x64:*",
                           versionEndExcluding: "14.0.3465.1",
                           versionStartIncluding: "14.0.0",
                           vulnerable: true,
                        },
                        {
                           criteria: "cpe:2.3:a:microsoft:sql_server:*:*:*:*:*:*:x64:*",
                           versionEndExcluding: "16.0.1105.1",
                           versionStartIncluding: "16.0.0",
                           vulnerable: true,
                        },
                        {
                           criteria: "cpe:2.3:a:microsoft:ole_db_driver_19_for_sql_server:*:*:*:*:*:*:*:*",
                           versionEndExcluding: "19.3.0002.0",
                           versionStartIncluding: "19.0.0",
                           vulnerable: true,
                        },
                        {
                           criteria: "cpe:2.3:a:microsoft:ole_db_driver_18_for_sql_server:*:*:*:*:*:*:*:*",
                           versionEndExcluding: "18.6.0007.0",
                           versionStartIncluding: "18.0.0",
                           vulnerable: true,
                        },
                        {
                           criteria: "cpe:2.3:a:microsoft:odbc_driver_17_for_sql_server:*:*:*:*:*:*:*:*",
                           versionEndExcluding: "17.10.5.1",
                           versionStartIncluding: "17.0.0.0",
                           vulnerable: true,
                        },
                        {
                           criteria: "cpe:2.3:a:microsoft:odbc_driver_17_for_sql_server:*:*:*:*:*:*:*:*",
                           versionEndExcluding: "17.10.5.1",
                           versionStartIncluding: "17.0.0.0",
                           vulnerable: true,
                        },
                        {
                           criteria: "cpe:2.3:a:microsoft:odbc_driver_17_for_sql_server:*:*:*:*:*:*:*:*",
                           versionEndExcluding: "17.10.5.1",
                           versionStartIncluding: "17.0.0.0",
                           vulnerable: true,
                        },
                        {
                           criteria: "cpe:2.3:a:microsoft:odbc_driver_18_for_sql_server:*:*:*:*:*:*:*:*",
                           versionEndExcluding: "18.3.2.1",
                           versionStartIncluding: "18.0.0.0",
                           vulnerable: true,
                        },
                        {
                           criteria: "cpe:2.3:a:microsoft:odbc_driver_18_for_sql_server:*:*:*:*:*:*:*:*",
                           versionEndExcluding: "18.3.2.1",
                           versionStartIncluding: "18.0.0.0",
                           vulnerable: true,
                        },
                        {
                           criteria: "cpe:2.3:a:microsoft:odbc_driver_18_for_sql_server:*:*:*:*:*:*:*:*",
                           versionEndExcluding: "18.3.2.1",
                           versionStartIncluding: "18.0.0.0",
                           vulnerable: true,
                        },
                     ],
                     negate: false,
                     operator: "OR",
                  },
               ],
            },
         ],
         datePublic: "2023-10-10T07:00:00.000Z",
         descriptions: [
            {
               lang: "en-US",
               value: "Microsoft SQL Server Denial of Service Vulnerability",
            },
         ],
         metrics: [
            {
               cvssV3_1: {
                  baseScore: 5.5,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C",
                  version: "3.1",
               },
               format: "CVSS",
               scenarios: [
                  {
                     lang: "en-US",
                     value: "GENERAL",
                  },
               ],
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     cweId: "CWE-125",
                     description: "CWE-125: Out-of-bounds Read",
                     lang: "en-US",
                     type: "CWE",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2025-04-14T22:46:01.074Z",
            orgId: "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            shortName: "microsoft",
         },
         references: [
            {
               name: "Microsoft SQL Server Denial of Service Vulnerability",
               tags: [
                  "vendor-advisory",
               ],
               url: "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36728",
            },
         ],
         title: "Microsoft SQL Server Denial of Service Vulnerability",
      },
   },
   cveMetadata: {
      assignerOrgId: "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
      assignerShortName: "microsoft",
      cveId: "CVE-2023-36728",
      datePublished: "2023-10-10T17:07:32.864Z",
      dateReserved: "2023-06-26T13:29:45.604Z",
      dateUpdated: "2025-04-14T22:46:01.074Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2023-36417

Vulnerability from cvelistv5

Published

2023-10-10 17:08

Modified

2025-04-14 22:46

Severity ?

7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Summary

Microsoft SQL OLE DB Remote Code Execution Vulnerability

References

▼	URL	Tags
	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36417	vendor-advisory

Impacted products

Vendor

Product

Version

▼

Version: 15.0.0 < 15.0.2104.1

Microsoft	Microsoft SQL Server 2022 (GDR)	Version: 16.0.0 < 16.0.1105.1
Microsoft	Microsoft OLE DB Driver 19 for SQL Server	Version: 19.0.0 < 19.3.0002.0
Microsoft	Microsoft OLE DB Driver 18 for SQL Server	Version: 18.0.0 < 18.6.0007.0
Microsoft	Microsoft SQL Server 2022 (CU 8)	Version: 15.0.0 < 16.0.4080.1
Microsoft	Microsoft SQL Server 2019 (CU 22)	Version: 15.0.0 < 15.0.4326.1

Show details on NVD website

To clipboard

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-02T16:45:57.103Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  name: "Microsoft SQL ODBC Driver Remote Code Execution Vulnerability",
                  tags: [
                     "vendor-advisory",
                     "x_transferred",
                  ],
                  url: "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36417",
               },
            ],
            title: "CVE Program Container",
         },
         {
            metrics: [
               {
                  other: {
                     content: {
                        id: "CVE-2023-36417",
                        options: [
                           {
                              Exploitation: "none",
                           },
                           {
                              Automatable: "no",
                           },
                           {
                              "Technical Impact": "total",
                           },
                        ],
                        role: "CISA Coordinator",
                        timestamp: "2025-02-26T21:49:50.389321Z",
                        version: "2.0.3",
                     },
                     type: "ssvc",
                  },
               },
            ],
            providerMetadata: {
               dateUpdated: "2025-02-27T20:42:36.212Z",
               orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0",
               shortName: "CISA-ADP",
            },
            title: "CISA ADP Vulnrichment",
         },
      ],
      cna: {
         affected: [
            {
               platforms: [
                  "x64-based Systems",
               ],
               product: "Microsoft SQL Server 2019 (GDR)",
               vendor: "Microsoft",
               versions: [
                  {
                     lessThan: "15.0.2104.1",
                     status: "affected",
                     version: "15.0.0",
                     versionType: "custom",
                  },
               ],
            },
            {
               platforms: [
                  "x64-based Systems",
               ],
               product: "Microsoft SQL Server 2022 (GDR)",
               vendor: "Microsoft",
               versions: [
                  {
                     lessThan: "16.0.1105.1",
                     status: "affected",
                     version: "16.0.0",
                     versionType: "custom",
                  },
               ],
            },
            {
               platforms: [
                  "Unknown",
               ],
               product: "Microsoft OLE DB Driver 19 for SQL Server",
               vendor: "Microsoft",
               versions: [
                  {
                     lessThan: "19.3.0002.0",
                     status: "affected",
                     version: "19.0.0",
                     versionType: "custom",
                  },
               ],
            },
            {
               platforms: [
                  "Unknown",
               ],
               product: "Microsoft OLE DB Driver 18 for SQL Server",
               vendor: "Microsoft",
               versions: [
                  {
                     lessThan: "18.6.0007.0",
                     status: "affected",
                     version: "18.0.0",
                     versionType: "custom",
                  },
               ],
            },
            {
               platforms: [
                  "x64-based Systems",
               ],
               product: "Microsoft SQL Server 2022 (CU 8)",
               vendor: "Microsoft",
               versions: [
                  {
                     lessThan: "16.0.4080.1",
                     status: "affected",
                     version: "15.0.0",
                     versionType: "custom",
                  },
               ],
            },
            {
               platforms: [
                  "x64-based Systems",
               ],
               product: "Microsoft SQL Server 2019 (CU 22)",
               vendor: "Microsoft",
               versions: [
                  {
                     lessThan: "15.0.4326.1",
                     status: "affected",
                     version: "15.0.0",
                     versionType: "custom",
                  },
               ],
            },
         ],
         cpeApplicability: [
            {
               nodes: [
                  {
                     cpeMatch: [
                        {
                           criteria: "cpe:2.3:a:microsoft:sql_server:*:*:*:*:*:*:x64:*",
                           versionEndExcluding: "15.0.2104.1",
                           versionStartIncluding: "15.0.0",
                           vulnerable: true,
                        },
                        {
                           criteria: "cpe:2.3:a:microsoft:sql_server:*:*:*:*:*:*:x64:*",
                           versionEndExcluding: "16.0.1105.1",
                           versionStartIncluding: "16.0.0",
                           vulnerable: true,
                        },
                        {
                           criteria: "cpe:2.3:a:microsoft:ole_db_driver_19_for_sql_server:*:*:*:*:*:*:*:*",
                           versionEndExcluding: "19.3.0002.0",
                           versionStartIncluding: "19.0.0",
                           vulnerable: true,
                        },
                        {
                           criteria: "cpe:2.3:a:microsoft:ole_db_driver_18_for_sql_server:*:*:*:*:*:*:*:*",
                           versionEndExcluding: "18.6.0007.0",
                           versionStartIncluding: "18.0.0",
                           vulnerable: true,
                        },
                        {
                           criteria: "cpe:2.3:a:microsoft:sql_server:*:*:*:*:*:*:x64:*",
                           versionEndExcluding: "16.0.4080.1",
                           versionStartIncluding: "15.0.0",
                           vulnerable: true,
                        },
                        {
                           criteria: "cpe:2.3:a:microsoft:sql_server:*:*:*:*:*:*:x64:*",
                           versionEndExcluding: "15.0.4326.1",
                           versionStartIncluding: "15.0.0",
                           vulnerable: true,
                        },
                     ],
                     negate: false,
                     operator: "OR",
                  },
               ],
            },
         ],
         datePublic: "2023-10-10T07:00:00.000Z",
         descriptions: [
            {
               lang: "en-US",
               value: "Microsoft SQL OLE DB Remote Code Execution Vulnerability",
            },
         ],
         metrics: [
            {
               cvssV3_1: {
                  baseScore: 7.8,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
                  version: "3.1",
               },
               format: "CVSS",
               scenarios: [
                  {
                     lang: "en-US",
                     value: "GENERAL",
                  },
               ],
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     cweId: "CWE-122",
                     description: "CWE-122: Heap-based Buffer Overflow",
                     lang: "en-US",
                     type: "CWE",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2025-04-14T22:46:39.421Z",
            orgId: "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            shortName: "microsoft",
         },
         references: [
            {
               name: "Microsoft SQL OLE DB Remote Code Execution Vulnerability",
               tags: [
                  "vendor-advisory",
               ],
               url: "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36417",
            },
         ],
         title: "Microsoft SQL OLE DB Remote Code Execution Vulnerability",
      },
   },
   cveMetadata: {
      assignerOrgId: "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
      assignerShortName: "microsoft",
      cveId: "CVE-2023-36417",
      datePublished: "2023-10-10T17:08:07.327Z",
      dateReserved: "2023-06-21T15:14:27.784Z",
      dateUpdated: "2025-04-14T22:46:39.421Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2023-36730

Vulnerability from cvelistv5

Published

2023-10-10 17:07

Modified

2025-04-14 22:45

Severity ?

7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Summary

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

References

▼	URL	Tags
	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36730	vendor-advisory

Impacted products

Vendor

Product

Version

▼

Version: 15.0.0 < 15.0.2104.1

Microsoft	Microsoft SQL Server 2022 (GDR)	Version: 16.0.0 < 16.0.1105.1
Microsoft	Microsoft ODBC Driver 17 for SQL Server on Windows	Version: 17.0.0.0 < 17.10.5.1
Microsoft	Microsoft ODBC Driver 17 for SQL Server on Linux	Version: 17.0.0.0 < 17.10.5.1
Microsoft	Microsoft ODBC Driver 17 for SQL Server on MacOS	Version: 17.0.0.0 < 17.10.5.1
Microsoft	Microsoft ODBC Driver 18 for SQL Server on Windows	Version: 18.0.0.0 < 18.3.2.1
Microsoft	Microsoft ODBC Driver 18 for SQL Server on Linux	Version: 18.0.0.0 < 18.3.2.1
Microsoft	Microsoft ODBC Driver 18 for SQL Server on MacOS	Version: 18.0.0.0 < 18.3.2.1
Microsoft	Microsoft SQL Server 2022 (CU 8)	Version: 15.0.0 < 16.0.4080.1
Microsoft	Microsoft SQL Server 2019 (CU 22)	Version: 15.0.0 < 15.0.4326.1

Show details on NVD website

To clipboard

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-02T16:52:54.089Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  name: "Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability",
                  tags: [
                     "vendor-advisory",
                     "x_transferred",
                  ],
                  url: "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36730",
               },
            ],
            title: "CVE Program Container",
         },
         {
            metrics: [
               {
                  other: {
                     content: {
                        id: "CVE-2023-36730",
                        options: [
                           {
                              Exploitation: "none",
                           },
                           {
                              Automatable: "no",
                           },
                           {
                              "Technical Impact": "total",
                           },
                        ],
                        role: "CISA Coordinator",
                        timestamp: "2025-02-26T21:50:10.793075Z",
                        version: "2.0.3",
                     },
                     type: "ssvc",
                  },
               },
            ],
            providerMetadata: {
               dateUpdated: "2025-02-27T20:44:39.623Z",
               orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0",
               shortName: "CISA-ADP",
            },
            title: "CISA ADP Vulnrichment",
         },
      ],
      cna: {
         affected: [
            {
               platforms: [
                  "x64-based Systems",
               ],
               product: "Microsoft SQL Server 2019 (GDR)",
               vendor: "Microsoft",
               versions: [
                  {
                     lessThan: "15.0.2104.1",
                     status: "affected",
                     version: "15.0.0",
                     versionType: "custom",
                  },
               ],
            },
            {
               platforms: [
                  "x64-based Systems",
               ],
               product: "Microsoft SQL Server 2022 (GDR)",
               vendor: "Microsoft",
               versions: [
                  {
                     lessThan: "16.0.1105.1",
                     status: "affected",
                     version: "16.0.0",
                     versionType: "custom",
                  },
               ],
            },
            {
               platforms: [
                  "Unknown",
               ],
               product: "Microsoft ODBC Driver 17 for SQL Server on Windows",
               vendor: "Microsoft",
               versions: [
                  {
                     lessThan: "17.10.5.1",
                     status: "affected",
                     version: "17.0.0.0",
                     versionType: "custom",
                  },
               ],
            },
            {
               platforms: [
                  "Unknown",
               ],
               product: "Microsoft ODBC Driver 17 for SQL Server on Linux",
               vendor: "Microsoft",
               versions: [
                  {
                     lessThan: "17.10.5.1",
                     status: "affected",
                     version: "17.0.0.0",
                     versionType: "custom",
                  },
               ],
            },
            {
               platforms: [
                  "Unknown",
               ],
               product: "Microsoft ODBC Driver 17 for SQL Server on MacOS",
               vendor: "Microsoft",
               versions: [
                  {
                     lessThan: "17.10.5.1",
                     status: "affected",
                     version: "17.0.0.0",
                     versionType: "custom",
                  },
               ],
            },
            {
               platforms: [
                  "Unknown",
               ],
               product: "Microsoft ODBC Driver 18 for SQL Server on Windows",
               vendor: "Microsoft",
               versions: [
                  {
                     lessThan: "18.3.2.1",
                     status: "affected",
                     version: "18.0.0.0",
                     versionType: "custom",
                  },
               ],
            },
            {
               platforms: [
                  "Unknown",
               ],
               product: "Microsoft ODBC Driver 18 for SQL Server on Linux",
               vendor: "Microsoft",
               versions: [
                  {
                     lessThan: "18.3.2.1",
                     status: "affected",
                     version: "18.0.0.0",
                     versionType: "custom",
                  },
               ],
            },
            {
               platforms: [
                  "Unknown",
               ],
               product: "Microsoft ODBC Driver 18 for SQL Server on MacOS",
               vendor: "Microsoft",
               versions: [
                  {
                     lessThan: "18.3.2.1",
                     status: "affected",
                     version: "18.0.0.0",
                     versionType: "custom",
                  },
               ],
            },
            {
               platforms: [
                  "x64-based Systems",
               ],
               product: "Microsoft SQL Server 2022 (CU 8)",
               vendor: "Microsoft",
               versions: [
                  {
                     lessThan: "16.0.4080.1",
                     status: "affected",
                     version: "15.0.0",
                     versionType: "custom",
                  },
               ],
            },
            {
               platforms: [
                  "x64-based Systems",
               ],
               product: "Microsoft SQL Server 2019 (CU 22)",
               vendor: "Microsoft",
               versions: [
                  {
                     lessThan: "15.0.4326.1",
                     status: "affected",
                     version: "15.0.0",
                     versionType: "custom",
                  },
               ],
            },
         ],
         cpeApplicability: [
            {
               nodes: [
                  {
                     cpeMatch: [
                        {
                           criteria: "cpe:2.3:a:microsoft:sql_server:*:*:*:*:*:*:x64:*",
                           versionEndExcluding: "15.0.2104.1",
                           versionStartIncluding: "15.0.0",
                           vulnerable: true,
                        },
                        {
                           criteria: "cpe:2.3:a:microsoft:sql_server:*:*:*:*:*:*:x64:*",
                           versionEndExcluding: "16.0.1105.1",
                           versionStartIncluding: "16.0.0",
                           vulnerable: true,
                        },
                        {
                           criteria: "cpe:2.3:a:microsoft:odbc_driver_17_for_sql_server:*:*:*:*:*:*:*:*",
                           versionEndExcluding: "17.10.5.1",
                           versionStartIncluding: "17.0.0.0",
                           vulnerable: true,
                        },
                        {
                           criteria: "cpe:2.3:a:microsoft:odbc_driver_17_for_sql_server:*:*:*:*:*:*:*:*",
                           versionEndExcluding: "17.10.5.1",
                           versionStartIncluding: "17.0.0.0",
                           vulnerable: true,
                        },
                        {
                           criteria: "cpe:2.3:a:microsoft:odbc_driver_17_for_sql_server:*:*:*:*:*:*:*:*",
                           versionEndExcluding: "17.10.5.1",
                           versionStartIncluding: "17.0.0.0",
                           vulnerable: true,
                        },
                        {
                           criteria: "cpe:2.3:a:microsoft:odbc_driver_18_for_sql_server:*:*:*:*:*:*:*:*",
                           versionEndExcluding: "18.3.2.1",
                           versionStartIncluding: "18.0.0.0",
                           vulnerable: true,
                        },
                        {
                           criteria: "cpe:2.3:a:microsoft:odbc_driver_18_for_sql_server:*:*:*:*:*:*:*:*",
                           versionEndExcluding: "18.3.2.1",
                           versionStartIncluding: "18.0.0.0",
                           vulnerable: true,
                        },
                        {
                           criteria: "cpe:2.3:a:microsoft:odbc_driver_18_for_sql_server:*:*:*:*:*:*:*:*",
                           versionEndExcluding: "18.3.2.1",
                           versionStartIncluding: "18.0.0.0",
                           vulnerable: true,
                        },
                        {
                           criteria: "cpe:2.3:a:microsoft:sql_server:*:*:*:*:*:*:x64:*",
                           versionEndExcluding: "16.0.4080.1",
                           versionStartIncluding: "15.0.0",
                           vulnerable: true,
                        },
                        {
                           criteria: "cpe:2.3:a:microsoft:sql_server:*:*:*:*:*:*:x64:*",
                           versionEndExcluding: "15.0.4326.1",
                           versionStartIncluding: "15.0.0",
                           vulnerable: true,
                        },
                     ],
                     negate: false,
                     operator: "OR",
                  },
               ],
            },
         ],
         datePublic: "2023-10-10T07:00:00.000Z",
         descriptions: [
            {
               lang: "en-US",
               value: "Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability",
            },
         ],
         metrics: [
            {
               cvssV3_1: {
                  baseScore: 7.8,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
                  version: "3.1",
               },
               format: "CVSS",
               scenarios: [
                  {
                     lang: "en-US",
                     value: "GENERAL",
                  },
               ],
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     cweId: "CWE-122",
                     description: "CWE-122: Heap-based Buffer Overflow",
                     lang: "en-US",
                     type: "CWE",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2025-04-14T22:45:59.713Z",
            orgId: "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            shortName: "microsoft",
         },
         references: [
            {
               name: "Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability",
               tags: [
                  "vendor-advisory",
               ],
               url: "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36730",
            },
         ],
         title: "Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability",
      },
   },
   cveMetadata: {
      assignerOrgId: "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
      assignerShortName: "microsoft",
      cveId: "CVE-2023-36730",
      datePublished: "2023-10-10T17:07:31.809Z",
      dateReserved: "2023-06-26T13:29:45.604Z",
      dateUpdated: "2025-04-14T22:45:59.713Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2023-36785

Vulnerability from cvelistv5

Published

2023-10-10 17:08

Modified

2025-04-14 22:46

Severity ?

7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Summary

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

References

▼	URL	Tags
	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36785	vendor-advisory

Impacted products

Vendor

Product

Version

▼

Version: 15.0.0 < 15.0.2104.1

Microsoft	Microsoft SQL Server 2022 (GDR)	Version: 16.0.0 < 16.0.1105.1
Microsoft	Microsoft ODBC Driver 17 for SQL Server on Windows	Version: 17.0.0.0 < 17.10.5.1
Microsoft	Microsoft ODBC Driver 17 for SQL Server on Linux	Version: 17.0.0.0 < 17.10.5.1
Microsoft	Microsoft ODBC Driver 17 for SQL Server on MacOS	Version: 17.0.0.0 < 17.10.5.1
Microsoft	Microsoft ODBC Driver 18 for SQL Server on Windows	Version: 18.0.0.0 < 18.3.2.1
Microsoft	Microsoft ODBC Driver 18 for SQL Server on Linux	Version: 18.0.0.0 < 18.3.2.1
Microsoft	Microsoft ODBC Driver 18 for SQL Server on MacOS	Version: 18.0.0.0 < 18.3.2.1
Microsoft	Microsoft SQL Server 2019 (CU 22)	Version: 15.0.0 < 15.0.4326.1
Microsoft	Microsoft SQL Server 2022 (CU 8)	Version: 15.0.0 < 16.0.4080.1

Show details on NVD website

To clipboard

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-02T17:01:09.589Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  name: "Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability",
                  tags: [
                     "vendor-advisory",
                     "x_transferred",
                  ],
                  url: "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36785",
               },
            ],
            title: "CVE Program Container",
         },
         {
            metrics: [
               {
                  other: {
                     content: {
                        id: "CVE-2023-36785",
                        options: [
                           {
                              Exploitation: "none",
                           },
                           {
                              Automatable: "no",
                           },
                           {
                              "Technical Impact": "total",
                           },
                        ],
                        role: "CISA Coordinator",
                        timestamp: "2025-02-26T21:49:49.237869Z",
                        version: "2.0.3",
                     },
                     type: "ssvc",
                  },
               },
            ],
            providerMetadata: {
               dateUpdated: "2025-02-27T20:42:30.756Z",
               orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0",
               shortName: "CISA-ADP",
            },
            title: "CISA ADP Vulnrichment",
         },
      ],
      cna: {
         affected: [
            {
               platforms: [
                  "x64-based Systems",
               ],
               product: "Microsoft SQL Server 2019 (GDR)",
               vendor: "Microsoft",
               versions: [
                  {
                     lessThan: "15.0.2104.1",
                     status: "affected",
                     version: "15.0.0",
                     versionType: "custom",
                  },
               ],
            },
            {
               platforms: [
                  "x64-based Systems",
               ],
               product: "Microsoft SQL Server 2022 (GDR)",
               vendor: "Microsoft",
               versions: [
                  {
                     lessThan: "16.0.1105.1",
                     status: "affected",
                     version: "16.0.0",
                     versionType: "custom",
                  },
               ],
            },
            {
               platforms: [
                  "Unknown",
               ],
               product: "Microsoft ODBC Driver 17 for SQL Server on Windows",
               vendor: "Microsoft",
               versions: [
                  {
                     lessThan: "17.10.5.1",
                     status: "affected",
                     version: "17.0.0.0",
                     versionType: "custom",
                  },
               ],
            },
            {
               platforms: [
                  "Unknown",
               ],
               product: "Microsoft ODBC Driver 17 for SQL Server on Linux",
               vendor: "Microsoft",
               versions: [
                  {
                     lessThan: "17.10.5.1",
                     status: "affected",
                     version: "17.0.0.0",
                     versionType: "custom",
                  },
               ],
            },
            {
               platforms: [
                  "Unknown",
               ],
               product: "Microsoft ODBC Driver 17 for SQL Server on MacOS",
               vendor: "Microsoft",
               versions: [
                  {
                     lessThan: "17.10.5.1",
                     status: "affected",
                     version: "17.0.0.0",
                     versionType: "custom",
                  },
               ],
            },
            {
               platforms: [
                  "Unknown",
               ],
               product: "Microsoft ODBC Driver 18 for SQL Server on Windows",
               vendor: "Microsoft",
               versions: [
                  {
                     lessThan: "18.3.2.1",
                     status: "affected",
                     version: "18.0.0.0",
                     versionType: "custom",
                  },
               ],
            },
            {
               platforms: [
                  "Unknown",
               ],
               product: "Microsoft ODBC Driver 18 for SQL Server on Linux",
               vendor: "Microsoft",
               versions: [
                  {
                     lessThan: "18.3.2.1",
                     status: "affected",
                     version: "18.0.0.0",
                     versionType: "custom",
                  },
               ],
            },
            {
               platforms: [
                  "Unknown",
               ],
               product: "Microsoft ODBC Driver 18 for SQL Server on MacOS",
               vendor: "Microsoft",
               versions: [
                  {
                     lessThan: "18.3.2.1",
                     status: "affected",
                     version: "18.0.0.0",
                     versionType: "custom",
                  },
               ],
            },
            {
               platforms: [
                  "x64-based Systems",
               ],
               product: "Microsoft SQL Server 2019 (CU 22)",
               vendor: "Microsoft",
               versions: [
                  {
                     lessThan: "15.0.4326.1",
                     status: "affected",
                     version: "15.0.0",
                     versionType: "custom",
                  },
               ],
            },
            {
               platforms: [
                  "x64-based Systems",
               ],
               product: "Microsoft SQL Server 2022 (CU 8)",
               vendor: "Microsoft",
               versions: [
                  {
                     lessThan: "16.0.4080.1",
                     status: "affected",
                     version: "15.0.0",
                     versionType: "custom",
                  },
               ],
            },
         ],
         cpeApplicability: [
            {
               nodes: [
                  {
                     cpeMatch: [
                        {
                           criteria: "cpe:2.3:a:microsoft:sql_server:*:*:*:*:*:*:x64:*",
                           versionEndExcluding: "15.0.2104.1",
                           versionStartIncluding: "15.0.0",
                           vulnerable: true,
                        },
                        {
                           criteria: "cpe:2.3:a:microsoft:sql_server:*:*:*:*:*:*:x64:*",
                           versionEndExcluding: "16.0.1105.1",
                           versionStartIncluding: "16.0.0",
                           vulnerable: true,
                        },
                        {
                           criteria: "cpe:2.3:a:microsoft:odbc_driver_17_for_sql_server:*:*:*:*:*:*:*:*",
                           versionEndExcluding: "17.10.5.1",
                           versionStartIncluding: "17.0.0.0",
                           vulnerable: true,
                        },
                        {
                           criteria: "cpe:2.3:a:microsoft:odbc_driver_17_for_sql_server:*:*:*:*:*:*:*:*",
                           versionEndExcluding: "17.10.5.1",
                           versionStartIncluding: "17.0.0.0",
                           vulnerable: true,
                        },
                        {
                           criteria: "cpe:2.3:a:microsoft:odbc_driver_17_for_sql_server:*:*:*:*:*:*:*:*",
                           versionEndExcluding: "17.10.5.1",
                           versionStartIncluding: "17.0.0.0",
                           vulnerable: true,
                        },
                        {
                           criteria: "cpe:2.3:a:microsoft:odbc_driver_18_for_sql_server:*:*:*:*:*:*:*:*",
                           versionEndExcluding: "18.3.2.1",
                           versionStartIncluding: "18.0.0.0",
                           vulnerable: true,
                        },
                        {
                           criteria: "cpe:2.3:a:microsoft:odbc_driver_18_for_sql_server:*:*:*:*:*:*:*:*",
                           versionEndExcluding: "18.3.2.1",
                           versionStartIncluding: "18.0.0.0",
                           vulnerable: true,
                        },
                        {
                           criteria: "cpe:2.3:a:microsoft:odbc_driver_18_for_sql_server:*:*:*:*:*:*:*:*",
                           versionEndExcluding: "18.3.2.1",
                           versionStartIncluding: "18.0.0.0",
                           vulnerable: true,
                        },
                        {
                           criteria: "cpe:2.3:a:microsoft:sql_server:*:*:*:*:*:*:x64:*",
                           versionEndExcluding: "15.0.4326.1",
                           versionStartIncluding: "15.0.0",
                           vulnerable: true,
                        },
                        {
                           criteria: "cpe:2.3:a:microsoft:sql_server:*:*:*:*:*:*:x64:*",
                           versionEndExcluding: "16.0.4080.1",
                           versionStartIncluding: "15.0.0",
                           vulnerable: true,
                        },
                     ],
                     negate: false,
                     operator: "OR",
                  },
               ],
            },
         ],
         datePublic: "2023-10-10T07:00:00.000Z",
         descriptions: [
            {
               lang: "en-US",
               value: "Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability",
            },
         ],
         metrics: [
            {
               cvssV3_1: {
                  baseScore: 7.8,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
                  version: "3.1",
               },
               format: "CVSS",
               scenarios: [
                  {
                     lang: "en-US",
                     value: "GENERAL",
                  },
               ],
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     cweId: "CWE-191",
                     description: "CWE-191: Integer Underflow (Wrap or Wraparound)",
                     lang: "en-US",
                     type: "CWE",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2025-04-14T22:46:42.673Z",
            orgId: "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            shortName: "microsoft",
         },
         references: [
            {
               name: "Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability",
               tags: [
                  "vendor-advisory",
               ],
               url: "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36785",
            },
         ],
         title: "Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability",
      },
   },
   cveMetadata: {
      assignerOrgId: "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
      assignerShortName: "microsoft",
      cveId: "CVE-2023-36785",
      datePublished: "2023-10-10T17:08:10.995Z",
      dateReserved: "2023-06-27T15:11:59.871Z",
      dateUpdated: "2025-04-14T22:46:42.673Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2023-36420

Vulnerability from cvelistv5

Published

2023-10-10 17:08

Modified

2025-04-14 22:46

Severity ?

7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Summary

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

References

▼	URL	Tags
	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36420	vendor-advisory

Impacted products

Vendor

Product

Version

▼

Version: 15.0.0 < 15.0.2104.1

Microsoft	Microsoft SQL Server 2022 (GDR)	Version: 16.0.0 < 16.0.1105.1
Microsoft	Microsoft ODBC Driver 17 for SQL Server on Windows	Version: 17.0.0.0 < 17.10.5.1
Microsoft	Microsoft ODBC Driver 17 for SQL Server on Linux	Version: 17.0.0.0 < 17.10.5.1
Microsoft	Microsoft ODBC Driver 17 for SQL Server on MacOS	Version: 17.0.0.0 < 17.10.5.1
Microsoft	Microsoft ODBC Driver 18 for SQL Server on Windows	Version: 18.0.0.0 < 18.3.2.1
Microsoft	Microsoft ODBC Driver 18 for SQL Server on Linux	Version: 18.0.0.0 < 18.3.2.1
Microsoft	Microsoft ODBC Driver 18 for SQL Server on MacOS	Version: 18.0.0.0 < 18.3.2.1
Microsoft	Microsoft SQL Server 2022 (CU 8)	Version: 15.0.0 < 16.0.4080.1
Microsoft	Microsoft SQL Server 2019 (CU 22)	Version: 15.0.0 < 15.0.4326.1

Show details on NVD website