CVE-2022-29143

Summary

Microsoft SQL Server Remote Code Execution Vulnerability

Affected Software

VendorProductVersion RangeStatus
MicrosoftMicrosoft SQL Server 2017 (GDR)14.0.0 < 14.0.2042.3affected
MicrosoftMicrosoft SQL Server 2014 Service Pack 3 (GDR)12.0.0 < 12.0.6169.19affected
MicrosoftMicrosoft SQL Server 2016 for x64-based Systems Service Pack 2 (GDR)13.0.0 < 13.0.5108.50affected
MicrosoftMicrosoft SQL Server 2014 Service Pack 3 (CU 4)12.0.0 < 12.0.6439.10affected
MicrosoftMicrosoft SQL Server 2019 (GDR)15.0.0 < 15.0.2095.3affected
MicrosoftMicrosoft SQL Server 2019 (CU 16)15.0.0.0 < 15.0.4236.7affected
MicrosoftMicrosoft SQL Server 2017 (CU 29)14.0.0.0 < 14.0.3445.2affected
MicrosoftMicrosoft SQL Server 2016 Service Pack 2 (CU 17)13.0.0.0 < 13.0.5893.48affected
MicrosoftMicrosoft SQL Server 2016 Service Pack 3 (GDR)13.0.0 < 13.0.6419.1affected
MicrosoftMicrosoft SQL Server 2016 Service Pack 3 Azure Connect Feature Pack13.0.0 < 13.0.7016.1affected

Weaknesses

  • Remote Code Execution

ADP Enrichment

CVE Program Container

Additional References

References