CVE-2019-1068
CVE-2019-1068
Vexday Risk Score
15Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS —EPSS 44.7%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
15 Jul 2019Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
A remote code execution vulnerability exists in Microsoft SQL Server when it incorrectly handles processing of internal functions, aka 'Microsoft SQL Server Remote Code Execution Vulnerability'.
Affected products
Microsoft · Microsoft SQL ServerMicrosoft · Microsoft SQL Server 2014 Service Pack 2 for 32-bit Systems (GDR)Microsoft · Microsoft SQL Server 2014 Service Pack 2 for x64-based Systems (GDR)Microsoft · Microsoft SQL Server 2014 Service Pack 3 for 32-bit Systems (CU)Microsoft · Microsoft SQL Server 2014 Service Pack 3 for 32-bit Systems (GDR)Microsoft · Microsoft SQL Server 2014 Service Pack 3 for x64-based Systems (CU)Microsoft · Microsoft SQL Server 2014 Service Pack 3 for x64-based Systems (GDR)Microsoft · Microsoft SQL Server 2016 for x64-based Systems Service Pack 1 (GDR)Microsoft · Microsoft SQL Server 2016 for x64-based Systems Service Pack 2 (GDR)Microsoft · Microsoft SQL Server 2017 for x64-based Systems (GDR)Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →