CVE-2024-28937

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:microsoft:odbc_driver_for_sql_server:*:*:*:*:*:linux:*:*
cpe:2.3:a:microsoft:odbc_driver_for_sql_server:*:*:*:*:*:macos:*:*
cpe:2.3:a:microsoft:odbc_driver_for_sql_server:*:*:*:*:*:windows:*:*
cpe:2.3:a:microsoft:odbc_driver_for_sql_server:*:*:*:*:*:linux:*:*
cpe:2.3:a:microsoft:odbc_driver_for_sql_server:*:*:*:*:*:macos:*:*
cpe:2.3:a:microsoft:odbc_driver_for_sql_server:*:*:*:*:*:windows:*:*
cpe:2.3:a:microsoft:sql_server_2019:*:*:*:*:*:*:x64:*
cpe:2.3:a:microsoft:sql_server_2019:*:*:*:*:*:*:x64:*
cpe:2.3:a:microsoft:sql_server_2022:*:*:*:*:*:*:x64:*
cpe:2.3:a:microsoft:sql_server_2022:*:*:*:*:*:*:x64:*
cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*

History

14 Jan 2025, 20:50

Type Values Removed Values Added
First Time Microsoft sql Server 2019
Microsoft odbc Driver For Sql Server
Microsoft visual Studio 2022
Microsoft sql Server 2022
Microsoft
Microsoft visual Studio 2019
CWE NVD-CWE-noinfo
CPE cpe:2.3:a:microsoft:sql_server_2019:*:*:*:*:*:*:x64:*
cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:sql_server_2022:*:*:*:*:*:*:x64:*
cpe:2.3:a:microsoft:odbc_driver_for_sql_server:*:*:*:*:*:macos:*:*
cpe:2.3:a:microsoft:odbc_driver_for_sql_server:*:*:*:*:*:windows:*:*
cpe:2.3:a:microsoft:odbc_driver_for_sql_server:*:*:*:*:*:linux:*:*
References () https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-28937 - () https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-28937 - Vendor Advisory

21 Nov 2024, 09:07

Type Values Removed Values Added
Summary
  • (es) Vulnerabilidad de ejecución remota de código del controlador ODBC de Microsoft para SQL Server
References () https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-28937 - () https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-28937 -

09 Apr 2024, 17:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-04-09 17:15

Updated : 2025-01-14 20:50


NVD link : CVE-2024-28937

Mitre link : CVE-2024-28937

CVE.ORG link : CVE-2024-28937


JSON object : View

Products Affected

microsoft

  • odbc_driver_for_sql_server
  • sql_server_2022
  • visual_studio_2019
  • sql_server_2019
  • visual_studio_2022
CWE
CWE-122

Heap-based Buffer Overflow

NVD-CWE-noinfo