Analysis
Analysis and contextual insights are available on OpenCVE Cloud.
Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||
|---|---|---|---|---|---|---|---|---|---|
| Microsoft | Microsoft SQL Server 2012 Service Pack 4 (QFE) | affected |
|
||||||
| Microsoft | Microsoft SQL Server 2012 for x64-based Systems Service Pack 4 (QFE) | affected |
|
||||||
| Microsoft | Microsoft SQL Server 2017 (GDR) | affected |
|
||||||
| Microsoft | Microsoft SQL Server 2014 Service Pack 3 (GDR) | affected |
|
||||||
| Microsoft | Microsoft SQL Server 2014 Service Pack 3 (CU 4) | affected |
|
||||||
| Microsoft | Microsoft SQL Server 2019 (GDR) | affected |
|
||||||
| Microsoft | Microsoft SQL Server 2016 Service Pack 3 (GDR) | affected |
|
||||||
| Microsoft | Microsoft SQL Server 2016 Service Pack 3 Azure Connect Feature Pack | affected |
|
||||||
| Microsoft | Microsoft SQL Server 2017 (CU 31) | affected |
|
||||||
| Microsoft | Microsoft SQL Server 2022 (GDR) | affected |
|
||||||
| Microsoft | Microsoft SQL Server 2019 (CU 18) | affected |
|
Configuration 1 [-]
|
No data.
No data available yet.
No vendor fix or workaround currently provided.
Additional remediation guidance may be available on OpenCVE Cloud.
Tracking
Sign in to view the affected projects.
| Source | ID | Title |
|---|---|---|
 EUVD |
EUVD-2023-25872 | Microsoft SQL Server Remote Code Execution Vulnerability |
Wed, 25 Feb 2026 16:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| CPEs | cpe:2.3:a:microsoft:sql_server:*:*:*:*:*:*:x64:* cpe:2.3:a:microsoft:sql_server:*:-:*:*:*:*:x64:* cpe:2.3:a:microsoft:sql_server:*:sp3:*:*:*:*:x64:* cpe:2.3:a:microsoft:sql_server:*:sp4:*:*:*:*:*:* cpe:2.3:a:microsoft:sql_server:2014:sp3:*:*:*:*:x64:* cpe:2.3:a:microsoft:sql_server:2014:sp3:*:*:*:*:x86:* |
Wed, 01 Jan 2025 01:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| CPEs | cpe:2.3:a:microsoft:sql_server:2014:sp3:*:*:*:*:x86:* cpe:2.3:a:microsoft:sql_server:2017:-:*:*:*:*:x64:* |
MITRE
Status: PUBLISHED
Assigner: microsoft
Published:
Updated: 2025-01-01T00:40:45.910Z
Reserved: 2022-12-13T18:08:03.490Z
Link: CVE-2023-21705
Vulnrichment
No data.
NVD
Status : Modified
Published: 2023-02-14T20:15:13.823
Modified: 2024-11-21T07:43:28.563
Link: CVE-2023-21705
Redhat
No data.
OpenCVE Enrichment
No data.