QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2018-8533

Back to search

CVE-2018-8533

Published: Oct 10, 2018

Modified: Aug 5, 2024

PUBLISHED

Description

An information disclosure vulnerability exists in Microsoft SQL Server Management Studio (SSMS) when parsing malicious XML content containing a reference to an external entity, aka "SQL Server Management Studio Information Disclosure Vulnerability." This affects SQL Server Management Studio 17.9, SQL Server Management Studio 18.0. This CVE ID is unique from CVE-2018-8527, CVE-2018-8532.

VendorProductVersions

Microsoft

SQL Server Management Studio 17.9

affected
SQL Server Management Studio 17.9

Microsoft

SQL Server Management Studio 18.0

affected
(Preview 4)

References

45583
exploit
x_refsource_EXPLOIT-DB
1041826
vdb-entry
x_refsource_SECTRACK
105476
vdb-entry
x_refsource_BID

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now