CVE-2024-0056

Published Jan 9, 2024

Last updated 12 days ago

Overview

Description
Microsoft.Data.SqlClient and System.Data.SqlClient SQL Data Provider Security Feature Bypass Vulnerability
Source
secure@microsoft.com
NVD status
Modified

Risk scores

CVSS 3.1

Type
Secondary
Base score
8.7
Impact score
5.8
Exploitability score
2.2
Vector string
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N
Severity
HIGH

Weaknesses

secure@microsoft.com
CWE-319
nvd@nist.gov
NVD-CWE-noinfo

Social media

Hype score
Not currently trending

Configurations