ByteOS

Matching Score-10

CVSS Score-8.8||HIGH

EPSS-5.20% / 89.55%

||

7 Day CHG+0.38%

Published-12 Nov, 2024 | 17:54

Updated-08 Jul, 2025 | 15:41

SQL Server Native Client Remote Code Execution Vulnerability

Product-sql_server_2016 sql_server_2019 sql_server_2017 Microsoft SQL Server 2019 (GDR)Microsoft SQL Server 2017 (GDR)Microsoft SQL Server 2016 Service Pack 3 Azure Connect Feature Pack Microsoft SQL Server 2017 (CU 31)Microsoft SQL Server 2019 (CU 29)Microsoft SQL Server 2016 Service Pack 3 (GDR)

CWE ID-CWE-122

Heap-based Buffer Overflow

CVE-2024-49009

Matching Score-10

Matching Score-10

CVSS Score-8.8||HIGH

EPSS-5.20% / 89.55%

||

7 Day CHG+0.38%

Published-12 Nov, 2024 | 17:54

Updated-08 Jul, 2025 | 15:41

SQL Server Native Client Remote Code Execution Vulnerability

Product-sql_server_2016 sql_server_2019 sql_server_2017 Microsoft SQL Server 2019 (GDR)Microsoft SQL Server 2017 (GDR)Microsoft SQL Server 2016 Service Pack 3 Azure Connect Feature Pack Microsoft SQL Server 2017 (CU 31)Microsoft SQL Server 2019 (CU 29)Microsoft SQL Server 2016 Service Pack 3 (GDR)

CWE ID-CWE-122

Heap-based Buffer Overflow

CVE-2024-48994

Matching Score-10

Matching Score-10

CVSS Score-8.8||HIGH

EPSS-6.90% / 91.02%

||

7 Day CHG+0.49%

Published-12 Nov, 2024 | 17:53

Updated-08 Jul, 2025 | 15:41

SQL Server Native Client Remote Code Execution Vulnerability

Product-sql_server_2016 sql_server_2019 sql_server_2017 Microsoft SQL Server 2019 (GDR)Microsoft SQL Server 2017 (GDR)Microsoft SQL Server 2016 Service Pack 3 Azure Connect Feature Pack Microsoft SQL Server 2017 (CU 31)Microsoft SQL Server 2019 (CU 29)Microsoft SQL Server 2016 Service Pack 3 (GDR)

CWE ID-CWE-122

Heap-based Buffer Overflow

CVE-2024-49012

Matching Score-10

Matching Score-10

CVSS Score-8.8||HIGH

EPSS-5.20% / 89.55%

||

7 Day CHG+0.38%

Published-12 Nov, 2024 | 17:54

Updated-08 Jul, 2025 | 15:41

SQL Server Native Client Remote Code Execution Vulnerability

Product-sql_server_2016 sql_server_2019 sql_server_2017 Microsoft SQL Server 2019 (GDR)Microsoft SQL Server 2017 (GDR)Microsoft SQL Server 2016 Service Pack 3 Azure Connect Feature Pack Microsoft SQL Server 2017 (CU 31)Microsoft SQL Server 2019 (CU 29)Microsoft SQL Server 2016 Service Pack 3 (GDR)

CWE ID-CWE-122

Heap-based Buffer Overflow

CVE-2024-48998

Matching Score-10

Matching Score-10

CVSS Score-8.8||HIGH

EPSS-5.20% / 89.55%

||

7 Day CHG+0.38%

Published-12 Nov, 2024 | 17:54

Updated-08 Jul, 2025 | 15:41

SQL Server Native Client Remote Code Execution Vulnerability

Product-sql_server_2016 sql_server_2019 sql_server_2017 Microsoft SQL Server 2019 (GDR)Microsoft SQL Server 2017 (GDR)Microsoft SQL Server 2016 Service Pack 3 Azure Connect Feature Pack Microsoft SQL Server 2017 (CU 31)Microsoft SQL Server 2019 (CU 29)Microsoft SQL Server 2016 Service Pack 3 (GDR)

CWE ID-CWE-122

Heap-based Buffer Overflow

CVE-2024-49001

Matching Score-10

Matching Score-10

CVSS Score-8.8||HIGH

EPSS-5.20% / 89.55%

||

7 Day CHG+0.38%

Published-12 Nov, 2024 | 17:54

Updated-08 Jul, 2025 | 15:41

SQL Server Native Client Remote Code Execution Vulnerability

Product-sql_server_2016 sql_server_2019 sql_server_2017 Microsoft SQL Server 2019 (GDR)Microsoft SQL Server 2017 (GDR)Microsoft SQL Server 2016 Service Pack 3 Azure Connect Feature Pack Microsoft SQL Server 2017 (CU 31)Microsoft SQL Server 2019 (CU 29)Microsoft SQL Server 2016 Service Pack 3 (GDR)

CWE ID-CWE-122

Heap-based Buffer Overflow

CVE-2024-49015

Matching Score-10

Matching Score-10

CVSS Score-8.8||HIGH

EPSS-5.20% / 89.55%

||

7 Day CHG+0.38%

Published-12 Nov, 2024 | 17:54

Updated-08 Jul, 2025 | 15:41

SQL Server Native Client Remote Code Execution Vulnerability

Product-sql_server_2016 sql_server_2019 sql_server_2017 Microsoft SQL Server 2019 (GDR)Microsoft SQL Server 2017 (GDR)Microsoft SQL Server 2016 Service Pack 3 Azure Connect Feature Pack Microsoft SQL Server 2017 (CU 31)Microsoft SQL Server 2019 (CU 29)Microsoft SQL Server 2016 Service Pack 3 (GDR)

CWE ID-CWE-122

Heap-based Buffer Overflow

CVE-2024-49013

Matching Score-10

Matching Score-10

CVSS Score-8.8||HIGH

EPSS-5.20% / 89.55%

||

7 Day CHG+0.38%

Published-12 Nov, 2024 | 17:54

Updated-08 Jul, 2025 | 15:41

SQL Server Native Client Remote Code Execution Vulnerability

Product-sql_server_2016 sql_server_2019 sql_server_2017 Microsoft SQL Server 2019 (GDR)Microsoft SQL Server 2017 (GDR)Microsoft SQL Server 2016 Service Pack 3 Azure Connect Feature Pack Microsoft SQL Server 2017 (CU 31)Microsoft SQL Server 2019 (CU 29)Microsoft SQL Server 2016 Service Pack 3 (GDR)

CWE ID-CWE-122

Heap-based Buffer Overflow

CVE-2024-49002

Matching Score-10

Matching Score-10

CVSS Score-8.8||HIGH

EPSS-6.90% / 91.02%

||

7 Day CHG+0.49%

Published-12 Nov, 2024 | 17:54

Updated-08 Jul, 2025 | 15:41

SQL Server Native Client Remote Code Execution Vulnerability

Product-sql_server_2016 sql_server_2019 sql_server_2017 Microsoft SQL Server 2019 (GDR)Microsoft SQL Server 2017 (GDR)Microsoft SQL Server 2016 Service Pack 3 Azure Connect Feature Pack Microsoft SQL Server 2017 (CU 31)Microsoft SQL Server 2019 (CU 29)Microsoft SQL Server 2016 Service Pack 3 (GDR)

CWE ID-CWE-122

Heap-based Buffer Overflow

CVE-2024-48996

Matching Score-10

Matching Score-10

CVSS Score-8.8||HIGH

EPSS-5.20% / 89.55%

||

7 Day CHG+0.38%

Published-12 Nov, 2024 | 17:53

Updated-08 Jul, 2025 | 15:41

SQL Server Native Client Remote Code Execution Vulnerability

Product-sql_server_2016 sql_server_2019 sql_server_2017 Microsoft SQL Server 2019 (GDR)Microsoft SQL Server 2017 (GDR)Microsoft SQL Server 2016 Service Pack 3 Azure Connect Feature Pack Microsoft SQL Server 2017 (CU 31)Microsoft SQL Server 2019 (CU 29)Microsoft SQL Server 2016 Service Pack 3 (GDR)

CWE ID-CWE-122

Heap-based Buffer Overflow

CVE-2024-49017

Matching Score-10

Matching Score-10

CVSS Score-8.8||HIGH

EPSS-5.20% / 89.55%

||

7 Day CHG+0.38%

Published-12 Nov, 2024 | 17:54

Updated-08 Jul, 2025 | 15:41

SQL Server Native Client Remote Code Execution Vulnerability

Product-sql_server_2016 sql_server_2019 sql_server_2017 Microsoft SQL Server 2019 (GDR)Microsoft SQL Server 2017 (GDR)Microsoft SQL Server 2016 Service Pack 3 Azure Connect Feature Pack Microsoft SQL Server 2017 (CU 31)Microsoft SQL Server 2019 (CU 29)Microsoft SQL Server 2016 Service Pack 3 (GDR)

CWE ID-CWE-122

Heap-based Buffer Overflow

CVE-2024-49011

Matching Score-10

Matching Score-10

CVSS Score-8.8||HIGH

EPSS-5.20% / 89.55%

||

7 Day CHG+0.38%

Published-12 Nov, 2024 | 17:54

Updated-08 Jul, 2025 | 15:41

SQL Server Native Client Remote Code Execution Vulnerability

Product-sql_server_2016 sql_server_2019 sql_server_2017 Microsoft SQL Server 2019 (GDR)Microsoft SQL Server 2017 (GDR)Microsoft SQL Server 2016 Service Pack 3 Azure Connect Feature Pack Microsoft SQL Server 2017 (CU 31)Microsoft SQL Server 2019 (CU 29)Microsoft SQL Server 2016 Service Pack 3 (GDR)

CWE ID-CWE-122

Heap-based Buffer Overflow

CVE-2024-49006

Matching Score-10

Matching Score-10

CVSS Score-8.8||HIGH

EPSS-5.20% / 89.55%

||

7 Day CHG+0.38%

Published-12 Nov, 2024 | 17:54

Updated-08 Jul, 2025 | 15:41

SQL Server Native Client Remote Code Execution Vulnerability

Product-sql_server_2016 sql_server_2019 sql_server_2017 Microsoft SQL Server 2019 (GDR)Microsoft SQL Server 2017 (GDR)Microsoft SQL Server 2016 Service Pack 3 Azure Connect Feature Pack Microsoft SQL Server 2017 (CU 31)Microsoft SQL Server 2019 (CU 29)Microsoft SQL Server 2016 Service Pack 3 (GDR)

CWE ID-CWE-122

Heap-based Buffer Overflow

CVE-2024-49008

Matching Score-10

Matching Score-10

CVSS Score-8.8||HIGH

EPSS-5.20% / 89.55%

||

7 Day CHG+0.38%

Published-12 Nov, 2024 | 17:54

Updated-08 Jul, 2025 | 15:41

SQL Server Native Client Remote Code Execution Vulnerability

Product-sql_server_2016 sql_server_2019 sql_server_2017 Microsoft SQL Server 2019 (GDR)Microsoft SQL Server 2017 (GDR)Microsoft SQL Server 2016 Service Pack 3 Azure Connect Feature Pack Microsoft SQL Server 2017 (CU 31)Microsoft SQL Server 2019 (CU 29)Microsoft SQL Server 2016 Service Pack 3 (GDR)

CWE ID-CWE-122

Heap-based Buffer Overflow

CVE-2024-49010

Matching Score-10

Matching Score-10

CVSS Score-8.8||HIGH

EPSS-6.90% / 91.02%

||

7 Day CHG+0.49%

Published-12 Nov, 2024 | 17:54

Updated-08 Jul, 2025 | 15:41

SQL Server Native Client Remote Code Execution Vulnerability

Product-sql_server_2016 sql_server_2019 sql_server_2017 Microsoft SQL Server 2019 (GDR)Microsoft SQL Server 2017 (GDR)Microsoft SQL Server 2016 Service Pack 3 Azure Connect Feature Pack Microsoft SQL Server 2017 (CU 31)Microsoft SQL Server 2019 (CU 29)Microsoft SQL Server 2016 Service Pack 3 (GDR)

CWE ID-CWE-122

Heap-based Buffer Overflow

CVE-2024-38265

Matching Score-10

Matching Score-10

CVSS Score-8.8||HIGH

EPSS-7.72% / 91.58%

||

7 Day CHG~0.00%

Published-08 Oct, 2024 | 17:35

Updated-08 Jul, 2025 | 15:38

Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

CWE ID-CWE-122

Heap-based Buffer Overflow

CWE ID-CWE-126

Buffer Over-read

CWE ID-CWE-20

Improper Input Validation

CVE-2024-38255

Matching Score-10

Matching Score-10

CVSS Score-8.8||HIGH

EPSS-5.90% / 90.26%

||

7 Day CHG+0.42%

Published-12 Nov, 2024 | 17:53

Updated-08 Jul, 2025 | 15:41

SQL Server Native Client Remote Code Execution Vulnerability

Product-sql_server_2016 sql_server_2019 sql_server_2017 Microsoft SQL Server 2019 (GDR)Microsoft SQL Server 2017 (GDR)Microsoft SQL Server 2016 Service Pack 3 Azure Connect Feature Pack Microsoft SQL Server 2017 (CU 31)Microsoft SQL Server 2019 (CU 29)Microsoft SQL Server 2016 Service Pack 3 (GDR)

CWE ID-CWE-122

Heap-based Buffer Overflow

CVE-2024-38154

Matching Score-10

Matching Score-10

CVSS Score-8.8||HIGH

EPSS-6.84% / 90.97%

||

7 Day CHG~0.00%

Published-13 Aug, 2024 | 17:30

Updated-10 Jul, 2025 | 16:33

Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

CWE ID-CWE-122

Heap-based Buffer Overflow

CVE-2024-37331

Matching Score-10

Matching Score-10

CVSS Score-8.8||HIGH

EPSS-2.22% / 83.83%

||

7 Day CHG~0.00%

Published-09 Jul, 2024 | 17:02

Updated-05 May, 2025 | 17:00

SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability

Product-sql_server_2016 sql_server_2019 sql_server_2022 sql_server_2017 Microsoft SQL Server 2016 Service Pack 3 Azure Connect Feature Pack Microsoft SQL Server 2019 (GDR)Microsoft SQL Server 2022 for (CU 13)Microsoft SQL Server 2022 (GDR)Microsoft SQL Server 2016 Service Pack 3 (GDR)Microsoft SQL Server 2017 (GDR)Microsoft SQL Server 2017 (CU 31)Microsoft SQL Server 2019 for x64-based Systems (CU 27)

CWE ID-CWE-122

Heap-based Buffer Overflow

CVE-2024-38088

Matching Score-10

Matching Score-10

CVSS Score-8.8||HIGH

EPSS-3.99% / 87.97%

||

7 Day CHG~0.00%

Published-09 Jul, 2024 | 17:02

Updated-05 May, 2025 | 17:00

SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability

Product-sql_server_2016 sql_server_2019 sql_server_2022 sql_server_2017 Microsoft SQL Server 2016 Service Pack 3 Azure Connect Feature Pack Microsoft SQL Server 2019 (GDR)Microsoft SQL Server 2022 for (CU 13)Microsoft SQL Server 2022 (GDR)Microsoft SQL Server 2016 Service Pack 3 (GDR)Microsoft SQL Server 2017 (GDR)Microsoft SQL Server 2017 (CU 31)Microsoft SQL Server 2019 for x64-based Systems (CU 27)

CWE ID-CWE-122

Heap-based Buffer Overflow

CVE-2024-37334

Matching Score-10

Matching Score-10

CVSS Score-8.8||HIGH

EPSS-2.43% / 84.54%

||

7 Day CHG~0.00%

Published-09 Jul, 2024 | 17:02

Updated-05 May, 2025 | 17:01

Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability

Product-sql_server_2019 ole_db_driver_for_sql_server sql_server_2022 Microsoft SQL Server 2019 (GDR)Microsoft SQL Server 2022 for (CU 13)Microsoft OLE DB Driver 19 for SQL Server Microsoft SQL Server 2022 (GDR)Microsoft OLE DB Driver 18 for SQL Server Microsoft SQL Server 2019 for x64-based Systems (CU 27)

CWE ID-CWE-122

Heap-based Buffer Overflow

CVE-2024-37324

Matching Score-10

Matching Score-10

CVSS Score-8.8||HIGH

EPSS-2.98% / 86.00%

||

7 Day CHG~0.00%

Published-09 Jul, 2024 | 17:02

Updated-05 May, 2025 | 17:01

SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability

Product-sql_server_2016 sql_server_2019 sql_server_2022 sql_server_2017 Microsoft SQL Server 2016 Service Pack 3 Azure Connect Feature Pack Microsoft SQL Server 2019 (GDR)Microsoft SQL Server 2022 for (CU 13)Microsoft SQL Server 2022 (GDR)Microsoft SQL Server 2016 Service Pack 3 (GDR)Microsoft SQL Server 2017 (GDR)Microsoft SQL Server 2017 (CU 31)Microsoft SQL Server 2019 for x64-based Systems (CU 27)

CWE ID-CWE-122

Heap-based Buffer Overflow

CVE-2024-37326

Matching Score-10

Matching Score-10

CVSS Score-8.8||HIGH

EPSS-2.98% / 86.00%

||

7 Day CHG~0.00%

Published-09 Jul, 2024 | 17:02

Updated-05 May, 2025 | 17:01

SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability

Product-sql_server_2016 sql_server_2019 sql_server_2022 sql_server_2017 Microsoft SQL Server 2016 Service Pack 3 Azure Connect Feature Pack Microsoft SQL Server 2019 (GDR)Microsoft SQL Server 2022 for (CU 13)Microsoft SQL Server 2022 (GDR)Microsoft SQL Server 2016 Service Pack 3 (GDR)Microsoft SQL Server 2017 (GDR)Microsoft SQL Server 2017 (CU 31)Microsoft SQL Server 2019 for x64-based Systems (CU 27)

CWE ID-CWE-122

Heap-based Buffer Overflow

CVE-2024-37322

Matching Score-10

Matching Score-10

CVSS Score-8.8||HIGH

EPSS-2.22% / 83.83%

||

7 Day CHG~0.00%

Published-09 Jul, 2024 | 17:02

Updated-05 May, 2025 | 17:01

SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability

Product-sql_server_2016 sql_server_2019 sql_server_2022 sql_server_2017 Microsoft SQL Server 2016 Service Pack 3 Azure Connect Feature Pack Microsoft SQL Server 2019 (GDR)Microsoft SQL Server 2022 for (CU 13)Microsoft SQL Server 2022 (GDR)Microsoft SQL Server 2016 Service Pack 3 (GDR)Microsoft SQL Server 2017 (GDR)Microsoft SQL Server 2017 (CU 31)Microsoft SQL Server 2019 for x64-based Systems (CU 27)

CWE ID-CWE-122

Heap-based Buffer Overflow

CVE-2024-37333

Matching Score-10

Matching Score-10

CVSS Score-8.8||HIGH

EPSS-2.96% / 85.95%

||

7 Day CHG~0.00%

Published-09 Jul, 2024 | 17:02

Updated-05 May, 2025 | 17:01

SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability

Product-sql_server_2016 sql_server_2019 sql_server_2022 sql_server_2017 Microsoft SQL Server 2016 Service Pack 3 Azure Connect Feature Pack Microsoft SQL Server 2019 (GDR)Microsoft SQL Server 2022 for (CU 13)Microsoft SQL Server 2022 (GDR)Microsoft SQL Server 2016 Service Pack 3 (GDR)Microsoft SQL Server 2017 (GDR)Microsoft SQL Server 2017 (CU 31)Microsoft SQL Server 2019 for x64-based Systems (CU 27)

CWE ID-CWE-122

Heap-based Buffer Overflow

CVE-2024-38120

Matching Score-10

Matching Score-10

CVSS Score-8.8||HIGH

EPSS-7.60% / 91.48%

||

7 Day CHG~0.00%

Published-13 Aug, 2024 | 17:30

Updated-10 Jul, 2025 | 16:33

Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

Product-Windows Server 2022, 23H2 Edition (Server Core installation)Windows Server 2016 Windows Server 2022 Windows Server 2012 (Server Core installation)Windows Server 2016 (Server Core installation)Windows Server 2012 R2 Windows Server 2012 R2 (Server Core installation)Windows Server 2008 Service Pack 2 Windows Server 2019 (Server Core installation)Windows Server 2008 Service Pack 2 Windows Server 2008 R2 Service Pack 1 Windows Server 2012 Windows Server 2008 R2 Service Pack 1 (Server Core installation)Windows Server 2008 Service Pack 2 (Server Core installation)Windows Server 2019 windows_server_2019

CWE ID-CWE-122

Heap-based Buffer Overflow

CVE-2024-38121

Matching Score-10

Matching Score-10

CVSS Score-8.8||HIGH

EPSS-7.60% / 91.48%

||

7 Day CHG~0.00%

Published-13 Aug, 2024 | 17:30

Updated-10 Jul, 2025 | 16:33

Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

Product-Windows Server 2022, 23H2 Edition (Server Core installation)Windows Server 2016 Windows Server 2022 Windows Server 2012 (Server Core installation)Windows Server 2016 (Server Core installation)Windows Server 2012 R2 Windows Server 2012 R2 (Server Core installation)Windows Server 2008 Service Pack 2 Windows Server 2019 (Server Core installation)Windows Server 2008 Service Pack 2 Windows Server 2008 R2 Service Pack 1 Windows Server 2012 Windows Server 2008 R2 Service Pack 1 (Server Core installation)Windows Server 2008 Service Pack 2 (Server Core installation)Windows Server 2019

CWE ID-CWE-122

Heap-based Buffer Overflow

CVE-2024-37329

Matching Score-10

Matching Score-10

CVSS Score-8.8||HIGH

EPSS-2.22% / 83.83%

||

7 Day CHG~0.00%

Published-09 Jul, 2024 | 17:02

Updated-05 May, 2025 | 17:01

SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability

Product-sql_server_2016 sql_server_2019 sql_server_2022 sql_server_2017 Microsoft SQL Server 2016 Service Pack 3 Azure Connect Feature Pack Microsoft SQL Server 2019 (GDR)Microsoft SQL Server 2022 for (CU 13)Microsoft SQL Server 2022 (GDR)Microsoft SQL Server 2016 Service Pack 3 (GDR)Microsoft SQL Server 2017 (GDR)Microsoft SQL Server 2017 (CU 31)Microsoft SQL Server 2019 for x64-based Systems (CU 27)

CWE ID-CWE-122

Heap-based Buffer Overflow

CVE-2024-38130

Matching Score-10

Matching Score-10

CVSS Score-8.8||HIGH

EPSS-5.84% / 90.20%

||

7 Day CHG~0.00%

Published-13 Aug, 2024 | 17:30

Updated-10 Jul, 2025 | 16:33

Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

Product-windows_10_21h2 windows_10_1809 windows_server_2016 windows_server_2022_23h2 windows_server_2012 windows_server_2008 windows_10_1507 windows_11_21h2 windows_11_24h2 windows_10_22h2 windows_server_2022 windows_11_22h2 windows_server_2019 windows_10_1607 windows_11_23h2 Windows Server 2022, 23H2 Edition (Server Core installation)Windows Server 2022 Windows Server 2012 R2 (Server Core installation)Windows Server 2016 (Server Core installation)Windows Server 2012 R2 Windows Server 2008 Service Pack 2 Windows 11 Version 24H2 Windows 11 Version 23H2 Windows Server 2008 R2 Service Pack 1 Windows Server 2008 R2 Service Pack 1 (Server Core installation)Windows 10 Version 1809 Windows Server 2008 Service Pack 2 (Server Core installation)Windows Server 2019 Windows 11 version 22H3 Windows Server 2016 Windows Server 2012 (Server Core installation)Windows 11 version 22H2 Windows Server 2019 (Server Core installation)Windows Server 2008 Service Pack 2 Windows 11 version 21H2 Windows 10 Version 22H2 Windows 10 Version 1507 Windows Server 2012 Windows 10 Version 1607 Windows 10 Version 21H2

CWE ID-CWE-122

Heap-based Buffer Overflow

CVE-2024-37330

Matching Score-10

Matching Score-10

CVSS Score-8.8||HIGH

EPSS-2.22% / 83.83%

||

7 Day CHG~0.00%

Published-09 Jul, 2024 | 17:02

Updated-05 May, 2025 | 17:01

SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability

Product-sql_server_2016 sql_server_2019 sql_server_2022 sql_server_2017 Microsoft SQL Server 2016 Service Pack 3 Azure Connect Feature Pack Microsoft SQL Server 2019 (GDR)Microsoft SQL Server 2022 for (CU 13)Microsoft SQL Server 2022 (GDR)Microsoft SQL Server 2016 Service Pack 3 (GDR)Microsoft SQL Server 2017 (GDR)Microsoft SQL Server 2017 (CU 31)Microsoft SQL Server 2019 for x64-based Systems (CU 27)

CWE ID-CWE-122

Heap-based Buffer Overflow

CVE-2024-37328

Matching Score-10

Matching Score-10

CVSS Score-8.8||HIGH

EPSS-2.22% / 83.83%

||

7 Day CHG~0.00%

Published-09 Jul, 2024 | 17:02

Updated-05 May, 2025 | 17:01

SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability

Product-sql_server_2016 sql_server_2019 sql_server_2022 sql_server_2017 Microsoft SQL Server 2016 Service Pack 3 Azure Connect Feature Pack Microsoft SQL Server 2019 (GDR)Microsoft SQL Server 2022 for (CU 13)Microsoft SQL Server 2022 (GDR)Microsoft SQL Server 2016 Service Pack 3 (GDR)Microsoft SQL Server 2017 (GDR)Microsoft SQL Server 2017 (CU 31)Microsoft SQL Server 2019 for x64-based Systems (CU 27)

CWE ID-CWE-122

Heap-based Buffer Overflow

CVE-2024-35271

Matching Score-10

Matching Score-10

CVSS Score-8.8||HIGH

EPSS-2.98% / 86.00%

||

7 Day CHG~0.00%

Published-09 Jul, 2024 | 17:02

Updated-05 May, 2025 | 17:01

SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability

Product-sql_server_2016 sql_server_2019 sql_server_2022 sql_server_2017 Microsoft SQL Server 2016 Service Pack 3 Azure Connect Feature Pack Microsoft SQL Server 2019 (GDR)Microsoft SQL Server 2022 for (CU 13)Microsoft SQL Server 2022 (GDR)Microsoft SQL Server 2016 Service Pack 3 (GDR)Microsoft SQL Server 2017 (GDR)Microsoft SQL Server 2017 (CU 31)Microsoft SQL Server 2019 for x64-based Systems (CU 27)

CWE ID-CWE-122

Heap-based Buffer Overflow

CVE-2024-28940

Matching Score-10

Matching Score-10

CVSS Score-8.8||HIGH

EPSS-2.22% / 83.83%

||

7 Day CHG+0.57%

Published-09 Apr, 2024 | 17:01

Updated-03 May, 2025 | 00:40

Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability

Product-sql_server_2022 sql_server_2019 ole_db_driver_for_sql_server Microsoft OLE DB Driver 19 for SQL Server Microsoft SQL Server 2019 (CU 25)Microsoft SQL Server 2022 (GDR)Microsoft OLE DB Driver 18 for SQL Server Microsoft SQL Server 2022 for (CU 12)Microsoft SQL Server 2019 (GDR)

CWE ID-CWE-122

Heap-based Buffer Overflow

CVE-2024-28908

Matching Score-10

Matching Score-10

CVSS Score-8.8||HIGH

EPSS-2.98% / 86.00%

||

7 Day CHG+1.34%

Published-09 Apr, 2024 | 17:00

Updated-03 May, 2025 | 00:39

Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability

Product-sql_server_2019 ole_db_driver_for_sql_server sql_server_2022 Microsoft OLE DB Driver 19 for SQL Server Microsoft SQL Server 2019 (CU 25)Microsoft SQL Server 2022 (GDR)Microsoft OLE DB Driver 18 for SQL Server Microsoft SQL Server 2022 for (CU 12)Microsoft SQL Server 2019 (GDR)

CWE ID-CWE-122

Heap-based Buffer Overflow

CVE-2025-53131

Matching Score-10

Matching Score-10

CVSS Score-8.8||HIGH

EPSS-0.07% / 20.46%

||

7 Day CHG~0.00%

Published-12 Aug, 2025 | 17:10

Updated-28 Aug, 2025 | 19:40

Windows Media Remote Code Execution Vulnerability

Heap-based buffer overflow in Windows Media allows an unauthorized attacker to execute code over a network.

CWE ID-CWE-122

Heap-based Buffer Overflow

CVE-2025-49668

Matching Score-10

Matching Score-10

CVSS Score-8.8||HIGH

EPSS-0.07% / 22.46%

||

7 Day CHG~0.00%

Published-08 Jul, 2025 | 16:57

Updated-23 Aug, 2025 | 00:40

Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network.

CWE ID-CWE-122

Heap-based Buffer Overflow

CVE-2024-26214

Matching Score-10

Matching Score-10

CVSS Score-8.8||HIGH

EPSS-2.22% / 83.83%

||

7 Day CHG+0.57%

Published-09 Apr, 2024 | 17:01

Updated-03 May, 2025 | 00:40

Microsoft WDAC SQL Server ODBC Driver Remote Code Execution Vulnerability

Product-windows_10_21h2 windows_10_1809 windows_server_2016 windows_server_2022_23h2 windows_server_2012 windows_server_2008 windows_10_1507 windows_11_21h2 windows_10_22h2 windows_server_2022 windows_11_22h2 windows_server_2019 windows_10_1607 windows_11_23h2 Windows 11 version 22H3 Windows Server 2012 (Server Core installation)Windows Server 2016 (Server Core installation)Windows Server 2008 Service Pack 2 Windows Server 2016 Windows 10 Version 1507 Windows Server 2008 Service Pack 2 (Server Core installation)Windows Server 2008 R2 Service Pack 1 (Server Core installation)Windows Server 2012 R2 Windows Server 2012 Windows Server 2019 Windows 10 Version 21H2 Windows 10 Version 1607 Windows 11 version 22H2 Windows Server 2022, 23H2 Edition (Server Core installation)Windows 11 Version 23H2 Windows Server 2022 Windows 11 version 21H2 Windows Server 2008 R2 Service Pack 1 Windows Server 2019 (Server Core installation)Windows Server 2008 Service Pack 2 Windows 10 Version 1809 Windows Server 2012 R2 (Server Core installation)Windows 10 Version 22H2

CWE ID-CWE-122

Heap-based Buffer Overflow

CVE-2025-47998

Matching Score-10

Matching Score-10

CVSS Score-8.8||HIGH

EPSS-0.08% / 24.04%

||

7 Day CHG~0.00%

Published-08 Jul, 2025 | 16:57

Updated-23 Aug, 2025 | 00:39

Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network.

CWE ID-CWE-122

Heap-based Buffer Overflow

CWE ID-CWE-190

Integer Overflow or Wraparound

CWE ID-CWE-787

Out-of-bounds Write

CVE-2024-26179

Matching Score-10

Matching Score-10

CVSS Score-8.8||HIGH

EPSS-2.98% / 86.00%

||

7 Day CHG+1.34%

Published-09 Apr, 2024 | 17:00

Updated-03 May, 2025 | 00:39

Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

Product-windows_10_21h2 windows_10_1809 windows_server_2016 windows_server_2022_23h2 windows_server_2012 windows_server_2008 windows_10_1507 windows_11_21h2 windows_10_22h2 windows_server_2022 windows_11_22h2 windows_server_2019 windows_10_1607 windows_11_23h2 Windows 11 version 22H3 Windows Server 2012 (Server Core installation)Windows Server 2016 (Server Core installation)Windows Server 2008 Service Pack 2 Windows Server 2016 Windows 10 Version 1507 Windows Server 2008 Service Pack 2 (Server Core installation)Windows Server 2008 R2 Service Pack 1 (Server Core installation)Windows Server 2012 R2 Windows Server 2012 Windows Server 2019 Windows 10 Version 21H2 Windows 10 Version 1607 Windows 11 version 22H2 Windows Server 2022, 23H2 Edition (Server Core installation)Windows 11 Version 23H2 Windows Server 2022 Windows 11 version 21H2 Windows Server 2008 R2 Service Pack 1 Windows Server 2019 (Server Core installation)Windows Server 2008 Service Pack 2 Windows 10 Version 1809 Windows Server 2012 R2 (Server Core installation)Windows 10 Version 22H2

CWE ID-CWE-122

Heap-based Buffer Overflow

CVE-2024-26159

Matching Score-10

Matching Score-10

CVSS Score-8.8||HIGH

EPSS-1.62% / 81.07%

||

7 Day CHG~0.00%

Published-12 Mar, 2024 | 16:57

Updated-03 May, 2025 | 00:46

Microsoft ODBC Driver Remote Code Execution Vulnerability

Product-windows_10_21h2 windows_10_1809 windows_server_2016 windows_server_2022_23h2 windows_server_2012 windows_server_2008 windows_10_1507 windows_11_21h2 windows_10_22h2 windows_server_2022 windows_11_22h2 windows_server_2019 windows_10_1607 windows_11_23h2 Windows 11 version 22H3 Windows Server 2012 (Server Core installation)Windows Server 2016 (Server Core installation)Windows Server 2008 Service Pack 2 Windows Server 2016 Windows 10 Version 1507 Windows Server 2008 Service Pack 2 (Server Core installation)Windows Server 2008 R2 Service Pack 1 (Server Core installation)Windows Server 2012 R2 Windows Server 2012 Windows Server 2019 Windows 10 Version 21H2 Windows 10 Version 1607 Windows 11 version 22H2 Windows Server 2022, 23H2 Edition (Server Core installation)Windows 11 Version 23H2 Windows Server 2022 Windows 11 version 21H2 Windows Server 2008 R2 Service Pack 1 Windows Server 2019 (Server Core installation)Windows Server 2008 Service Pack 2 Windows 10 Version 1809 Windows Server 2012 R2 (Server Core installation)Windows 10 Version 22H2

CWE ID-CWE-122

Heap-based Buffer Overflow

CVE-2025-29966

Matching Score-10

Matching Score-10

CVSS Score-8.8||HIGH

EPSS-0.17% / 38.63%

||

7 Day CHG~0.00%

Published-13 May, 2025 | 16:58

Updated-15 Jul, 2025 | 01:11

Remote Desktop Client Remote Code Execution Vulnerability

Heap-based buffer overflow in Windows Remote Desktop allows an unauthorized attacker to execute code over a network.