CVE-2016-7253 in SQL ServerИнформация

Сводка

по MITRE

The agent in Microsoft SQL Server 2012 SP2, 2012 SP3, 2014 SP1, 2014 SP2, and 2016 does not properly check the atxcore.dll ACL, which allows remote authenticated users to gain privileges via unspecified vectors, aka "SQL Server Agent Elevation of Privilege Vulnerability."

VulDB is the best source for vulnerability data and more expert information about this specific topic.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Резервировать

09.09.2016

Раскрытие

10.11.2016

Модерация

принято

Вход

VDB-93416

CPE

готов

CWE

CWE-264 (Подтверждённый)

CVSS

8.8 (NVD)

EPSS

0.18223

KEV

Нет

Деятельности

Очень низкий

Сектор

Hospital, Pharma, ...

Источники

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-7253
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-7253
CVE Details	https://www.cvedetails.com/cve/CVE-2016-7253/

◂ Предыдущий Обзор Далее ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!