Описание
A remote code execution vulnerability exists in Microsoft SQL Server Reporting Services when it incorrectly handles page requests, aka 'Microsoft SQL Server Reporting Services Remote Code Execution Vulnerability'.
Ссылки
- ExploitThird Party AdvisoryVDB Entry
- ExploitThird Party AdvisoryVDB Entry
- PatchVendor Advisory
- ExploitThird Party AdvisoryVDB Entry
- ExploitThird Party AdvisoryVDB Entry
- PatchVendor Advisory
- US Government Resource
Уязвимые конфигурации
Одно из
EPSS
8.8 High
CVSS3
9.8 Critical
CVSS3
6.5 Medium
CVSS2
Дефекты
Связанные уязвимости
Microsoft SQL Server Reporting Services Remote Code Execution Vulnerability
A remote code execution vulnerability exists in Microsoft SQL Server Reporting Services when it incorrectly handles page requests, aka 'Microsoft SQL Server Reporting Services Remote Code Execution Vulnerability'.
Уязвимость системы управления реляционными базами данных Microsoft SQL Server, связанная с недостаточной проверкой входных данных, позволяющая нарушителю выполнить произвольный код
EPSS
8.8 High
CVSS3
9.8 Critical
CVSS3
6.5 Medium
CVSS2