Home

Description

Microsoft SQL Server Denial of Service Vulnerability

PUBLISHED Reserved 2023-06-26 | Published 2023-10-10 | Updated 2025-04-14 | Assigner microsoft




MEDIUM: 5.5CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C

Problem types

CWE-125: Out-of-bounds Read

Product status

15.0.0 (custom) before 15.0.4326.1
affected

15.0.0 (custom) before 16.0.4080.1
affected

14.0.0 (custom) before 14.0.2052.1
affected

12.0.0 (custom) before 12.0.6179.1
affected

12.0.0 (custom) before 12.0.6449.1
affected

15.0.0 (custom) before 15.0.2104.1
affected

13.0.0 (custom) before 13.0.6435.1
affected

13.0.0 (custom) before 13.0.7029.3
affected

14.0.0 (custom) before 14.0.3465.1
affected

16.0.0 (custom) before 16.0.1105.1
affected

19.0.0 (custom) before 19.3.0002.0
affected

18.0.0 (custom) before 18.6.0007.0
affected

17.0.0.0 (custom) before 17.10.5.1
affected

17.0.0.0 (custom) before 17.10.5.1
affected

17.0.0.0 (custom) before 17.10.5.1
affected

18.0.0.0 (custom) before 18.3.2.1
affected

18.0.0.0 (custom) before 18.3.2.1
affected

18.0.0.0 (custom) before 18.3.2.1
affected

References

msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36728 (Microsoft SQL Server Denial of Service Vulnerability) vendor-advisory

msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36728 (Microsoft SQL Server Denial of Service Vulnerability) vendor-advisory

cve.org (CVE-2023-36728)

nvd.nist.gov (CVE-2023-36728)

Download JSON