CVE-2022-34733 Microsoft OLE DB Provider for SQL Server Remote Code Execution Vulnerability
This issue was reported by Neil Hall and Andrey Meshkov of Google Project Zero. This vulnerability has been assigned the CVE identifier CVE-2022. This vulnerability
CVE-2022-34731 Microsoft OLE DB Provider for SQL Server Remote Code Execution Vulnerability
This affects SQL Server 2017, SQL Server 2019, SQL Server 2016. This affects Windows Servers that have the SQL Server components installed. This can be
CVE-2022-35835 Microsoft OLE DB Provider for SQL Server Remote Code Execution Vulnerability
This issue was discovered by Suman Jana and Milana Kovacev from IT security company SentinelOne. This issue affects SQL Server 2012 SP1, 2012 SP2, 2014,
CVE-2022-35836 Microsoft OLE DB Provider for SQL Server Remote Code Execution Vulnerability
A remote attacker can send specially crafted queries to the SQL Server via HTTP requests. Such requests can be received by a vulnerable server and
CVE-2022-38542 Archery v1.4.0 to v1.8.5 had a SQL injection vulnerability in the kill_session interface.
If an attacker could convince a victim to load the Archery website via the vulnerable URL, they could exploit this vulnerability to execute arbitrary SQL
Episode
00:00:00
00:00:00