CVE-2019-1068

Published: Jul 15, 2019

Modified: Aug 4, 2024

PUBLISHED

Description

A remote code execution vulnerability exists in Microsoft SQL Server when it incorrectly handles processing of internal functions, aka 'Microsoft SQL Server Remote Code Execution Vulnerability'.

Vendor	Product	Versions
Microsoft	Microsoft SQL Server 2014 Service Pack 2 for 32-bit Systems (GDR)	affected `unspecified`
Microsoft	Microsoft SQL Server	affected `2014 Service Pack 2 for 32-bit Systems (CU)` affected `2014 Service Pack 2 for x64-based Systems (CU)` affected `2016 for x64-based Systems Service Pack 1 (CU)` affected `2017 for x64-based Systems (CU)` affected `2016 for x64-based Systems Service Pack 2 (CU)`
Microsoft	Microsoft SQL Server 2014 Service Pack 2 for x64-based Systems (GDR)	affected `unspecified`
Microsoft	Microsoft SQL Server 2016 for x64-based Systems Service Pack 1 (GDR)	affected `unspecified`
Microsoft	Microsoft SQL Server 2017 for x64-based Systems (GDR)	affected `unspecified`
Microsoft	Microsoft SQL Server 2016 for x64-based Systems Service Pack 2 (GDR)	affected `unspecified`
Microsoft	Microsoft SQL Server 2014 Service Pack 3 for x64-based Systems (GDR)	affected `unspecified`
Microsoft	Microsoft SQL Server 2014 Service Pack 3 for x64-based Systems (CU)	affected `unspecified`
Microsoft	Microsoft SQL Server 2014 Service Pack 3 for 32-bit Systems (GDR)	affected `unspecified`
Microsoft	Microsoft SQL Server 2014 Service Pack 3 for 32-bit Systems (CU)	affected `unspecified`

References

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1068

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2019-1068

Description

Affected Products

References