Description
Microsoft SQL Server Denial of Service Vulnerability
Reserved 2023-06-26 | Published 2023-10-10 | Updated 2025-04-14 | Assigner
microsoftMEDIUM: 5.5CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C
Problem types
CWE-125: Out-of-bounds Read
Product status
15.0.0 before 15.0.4326.1
affected
15.0.0 before 16.0.4080.1
affected
14.0.0 before 14.0.2052.1
affected
12.0.0 before 12.0.6179.1
affected
12.0.0 before 12.0.6449.1
affected
15.0.0 before 15.0.2104.1
affected
13.0.0 before 13.0.6435.1
affected
13.0.0 before 13.0.7029.3
affected
14.0.0 before 14.0.3465.1
affected
16.0.0 before 16.0.1105.1
affected
19.0.0 before 19.3.0002.0
affected
18.0.0 before 18.6.0007.0
affected
17.0.0.0 before 17.10.5.1
affected
17.0.0.0 before 17.10.5.1
affected
17.0.0.0 before 17.10.5.1
affected
18.0.0.0 before 18.3.2.1
affected
18.0.0.0 before 18.3.2.1
affected
18.0.0.0 before 18.3.2.1
affected
References
msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36728 (Microsoft SQL Server Denial of Service Vulnerability) vendor-advisory
cve.org (CVE-2023-36728)
nvd.nist.gov (CVE-2023-36728)
Download JSON