CNNVD-202507-1051 Information
CNNVD ID
CNNVD-202507-1051
Related CVE
- CNNVD Published: 2025-07-08
Description (Chinese)
Microsoft SQL Server是美国微软(Microsoft)公司的一套应用在Microsoft Windows系统下的大型商业数据库系统。 Microsoft SQL Server存在输入验证错误漏洞。攻击者利用该漏洞可以获取敏感信息。以下产品和版本受到影响:Microsoft SQL Server 2016 for x64-based Systems Service Pack 2 (GDR),Microsoft SQL Server 2019 for x64-based Systems (GDR),Microsoft SQL Server 2016 for x64-based Systems Service Pack 3 Azure Connect Feature Pack,Microsoft SQL Server 2017 for x64-based Systems (CU 31),Microsoft SQL Server 2022 for x64-based Systems (GDR),Microsoft SQL Server 2019 for x64-based Systems (CU 32),Microsoft SQL Server 2022 for x64-based Systems (CU 19),Microsoft SQL Server 2017 for x64-based Systems (GDR)。
Description (English)
Microsoft SQL Server is a large commercial database system for Microsoft (MSC) in the United States, which is applied under Microsoft Windows. Microsoft SQL Server has input authentication bugs. The attackers use that loophole to obtain sensitive information. The following products and versions have been affected: Microsoft SQL Server 2016 for x64-based Systems Service Pack 2 (GDR), Microsoft SQL Server 2019 for x64-based Systems (GDR), Microsoft SQL Server 2016 for x64-based Systems Service Pack 3 Appure Construction Pack, Microsoft SQL Server 2017 for x64-based Systems (CU 31), Microsoft SQL Server 2022 for x64-based Systems (GDR), Microsoft SQL Server 2019 for x 64-based Systems (CU 32, Microsoft SQL Server 2022 for x 64-based Systems, CU 19), SLver 2017 for QR 20R 17
Hazard Level
Medium
Vulnerability Type
输入验证错误
Affected Vendor
微软
Published
2025-07-08
Last Modified
2026-02-24
References
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-49719
Patch
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-49719
Share on: