Vulnerability-Lookup

CVE-2023-32028 (GCVE-0-2023-32028)

Vulnerability from cvelistv5 – Published: 2023-06-16 00:44 – Updated: 2025-01-01 01:43

Title

Microsoft SQL OLE DB Remote Code Execution Vulnerability

Summary

Microsoft SQL OLE DB Remote Code Execution Vulnerability

Severity ?

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

CWE

CWE-122 - Heap-based Buffer Overflow

Assigner

microsoft

References

URL

CERTFR-2023-AVI-0469

Vulnerability from certfr_avis - Published: 2023-06-16 - Updated: 2023-06-16

De multiples vulnérabilités ont été corrigées dans les produits Microsoft. Elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
Microsoft	N/A	Microsoft ODBC Driver 17 pour SQL Server sur Linux
Microsoft	N/A	Microsoft ODBC Driver 18 pour SQL Server sur Linux
Microsoft	N/A	Microsoft SQL Server 2022 pour systèmes x64 (CU 5)
Microsoft	N/A	Microsoft OLE DB Driver 19 pour SQL Server
Microsoft	Windows	Microsoft ODBC Driver 18 pour SQL Server sur Windows
Microsoft	N/A	Microsoft SQL Server 2019 pour systèmes x64 (CU 21)
Microsoft	N/A	Microsoft ODBC Driver 17 pour SQL Server sur MacOS
Microsoft	Windows	Microsoft ODBC Driver 17 pour SQL Server sur Windows
Microsoft	N/A	Microsoft OLE DB Driver 18 pour SQL Server
Microsoft	N/A	Microsoft ODBC Driver 18 pour SQL Server sur MacOS

References

Title

Publication Time

MSRC_CVE-2023-32028

Vulnerability from csaf_microsoft - Published: 2023-06-13 07:00 - Updated: 2024-01-09 08:00

Summary

Microsoft SQL OLE DB Remote Code Execution Vulnerability

Notes

Additional Resources

To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle

Disclaimer

The information provided in the Microsoft Knowledge Base is provided \"as is\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.

Customer Action

Required. The vulnerability documented by this CVE requires customer action to resolve.

JSON

To clipboard

{
  "document": {
    "acknowledgments": [
      {
        "names": [
          "bee13oy with \u003ca href=\"https://www.cyberkl.com/\"\u003eCyber Kunlun Lab\u003c/a\u003e"
        ]
      }
    ],
    "aggregate_severity": {
      "namespace": "https://www.microsoft.com/en-us/msrc/security-update-severity-rating-system",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Public",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en-US",
    "notes": [
      {
        "category": "general",
        "text": "To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle",
        "title": "Additional Resources"
      },
      {
        "category": "legal_disclaimer",
        "text": "The information provided in the Microsoft Knowledge Base is provided \\\"as is\\\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.",
        "title": "Disclaimer"
      },
      {
        "category": "general",
        "text": "Required. The vulnerability documented by this CVE requires customer action to resolve.",
        "title": "Customer Action"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "secure@microsoft.com",
      "name": "Microsoft Security Response Center",
      "namespace": "https://msrc.microsoft.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "CVE-2023-32028 Microsoft SQL OLE DB Remote Code Execution Vulnerability - HTML",
        "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32028"
      },
      {
        "category": "self",
        "summary": "CVE-2023-32028 Microsoft SQL OLE DB Remote Code Execution Vulnerability - CSAF",
        "url": "https://msrc.microsoft.com/csaf/advisories/2023/msrc_cve-2023-32028.json"
      },
      {
        "category": "external",
        "summary": "Microsoft Exploitability Index",
        "url": "https://www.microsoft.com/en-us/msrc/exploitability-index?rtc=1"
      },
      {
        "category": "external",
        "summary": "Microsoft Support Lifecycle",
        "url": "https://support.microsoft.com/lifecycle"
      },
      {
        "category": "external",
        "summary": "Common Vulnerability Scoring System",
        "url": "https://www.first.org/cvss"
      }
    ],
    "title": "Microsoft SQL OLE DB Remote Code Execution Vulnerability",
    "tracking": {
      "current_release_date": "2024-01-09T08:00:00.000Z",
      "generator": {
        "date": "2026-01-06T16:31:37.188Z",
        "engine": {
          "name": "MSRC Generator",
          "version": "1.0"
        }
      },
      "id": "msrc_CVE-2023-32028",
      "initial_release_date": "2023-06-13T07:00:00.000Z",
      "revision_history": [
        {
          "date": "2023-06-15T07:00:00.000Z",
          "legacy_version": "1",
          "number": "1",
          "summary": "Information published."
        },
        {
          "date": "2023-07-11T07:00:00.000Z",
          "legacy_version": "1.1",
          "number": "2",
          "summary": "Added an FAQ to inform customers who have installed Microsoft SQL Server 2022 for x64-based Systems (GDR) or Microsoft SQL Server 2019 for x64-based Systems (GDR) are vulnerable. Microsoft recommends updating to the latest cumulative update to be protected from this vulnerability."
        },
        {
          "date": "2023-10-11T07:00:00.000Z",
          "legacy_version": "1.2",
          "number": "3",
          "summary": "Updated product information in the Software Update table. This is an informational change only."
        },
        {
          "date": "2024-01-09T08:00:00.000Z",
          "legacy_version": "2",
          "number": "4",
          "summary": "In the Security Updates table, added Microsoft Visual Studio 2019 version 16.11, Visual Studio 2022 version 17.2, Visual Studio 2022 version 17.4, Visual Studio 2022 version 17.6, and Visual Studio 2022 version 17.8 because these products are also affected by this vulnerability. Microsoft strongly recommends that customers running any of these products install the updates to be fully protected from the vulnerability. Customers whose systems are configured to receive automatic updates do not need to take any further action."
        }
      ],
      "status": "final",
      "version": "4"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c19.3.0001.0",
            "product": {
              "name": "Microsoft OLE DB Driver 19 for SQL Server \u003c19.3.0001.0",
              "product_id": "4"
            }
          },
          {
            "category": "product_version",
            "name": "19.3.0001.0",
            "product": {
              "name": "Microsoft OLE DB Driver 19 for SQL Server 19.3.0001.0",
              "product_id": "12180"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft OLE DB Driver 19 for SQL Server"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c18.6.0006.0",
            "product": {
              "name": "Microsoft OLE DB Driver 18 for SQL Server \u003c18.6.0006.0",
              "product_id": "3"
            }
          },
          {
            "category": "product_version",
            "name": "18.6.0006.0",
            "product": {
              "name": "Microsoft OLE DB Driver 18 for SQL Server 18.6.0006.0",
              "product_id": "12181"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft OLE DB Driver 18 for SQL Server"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c16.11.33",
            "product": {
              "name": "Microsoft Visual Studio 2019 version 16.11 (includes 16.0 - 16.10) \u003c16.11.33",
              "product_id": "7"
            }
          },
          {
            "category": "product_version",
            "name": "16.11.33",
            "product": {
              "name": "Microsoft Visual Studio 2019 version 16.11 (includes 16.0 - 16.10) 16.11.33",
              "product_id": "11935"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft Visual Studio 2019 version 16.11 (includes 16.0 - 16.10)"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c17.2.23",
            "product": {
              "name": "Microsoft Visual Studio 2022 version 17.2 \u003c17.2.23",
              "product_id": "6"
            }
          },
          {
            "category": "product_version",
            "name": "17.2.23",
            "product": {
              "name": "Microsoft Visual Studio 2022 version 17.2 17.2.23",
              "product_id": "12051"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft Visual Studio 2022 version 17.2"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c17.4.15",
            "product": {
              "name": "Microsoft Visual Studio 2022 version 17.4 \u003c17.4.15",
              "product_id": "5"
            }
          },
          {
            "category": "product_version",
            "name": "17.4.15",
            "product": {
              "name": "Microsoft Visual Studio 2022 version 17.4 17.4.15",
              "product_id": "12129"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft Visual Studio 2022 version 17.4"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c17.6.11",
            "product": {
              "name": "Microsoft Visual Studio 2022 version 17.6 \u003c17.6.11",
              "product_id": "2"
            }
          },
          {
            "category": "product_version",
            "name": "17.6.11",
            "product": {
              "name": "Microsoft Visual Studio 2022 version 17.6 17.6.11",
              "product_id": "12187"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft Visual Studio 2022 version 17.6"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c17.8.4",
            "product": {
              "name": "Microsoft Visual Studio 2022 version 17.8 \u003c17.8.4",
              "product_id": "1"
            }
          },
          {
            "category": "product_version",
            "name": "17.8.4",
            "product": {
              "name": "Microsoft Visual Studio 2022 version 17.8 17.8.4",
              "product_id": "12271"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft Visual Studio 2022 version 17.8"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2023-32028",
      "cwe": {
        "id": "CWE-122",
        "name": "Heap-based Buffer Overflow"
      },
      "notes": [
        {
          "category": "general",
          "text": "Microsoft",
          "title": "Assigning CNA"
        },
        {
          "category": "faq",
          "text": "Yes, customers who have installed Microsoft SQL Server 2022 for x64-based Systems (GDR) or Microsoft SQL Server 2019 for x64-based Systems (GDR) are vulnerable.  Microsoft recommends updating to the latest cumulative update to be protected from this vulnerability.",
          "title": "If I normally install GDR versions and have not installed the June Cumulative Update, am I affected by the vulnerability?"
        },
        {
          "category": "faq",
          "text": "An attacker could exploit the vulnerability by tricking an authenticated user into attempting to connect to a malicious SQL server via OLEDB, which could result in the server receiving a malicious networking packet. This could allow the attacker to execute code remotely on the client.",
          "title": "How could an attacker exploit this vulnerability?"
        }
      ],
      "product_status": {
        "fixed": [
          "11935",
          "12051",
          "12129",
          "12180",
          "12181",
          "12187",
          "12271"
        ],
        "known_affected": [
          "1",
          "2",
          "3",
          "4",
          "5",
          "6",
          "7"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2023-32028 Microsoft SQL OLE DB Remote Code Execution Vulnerability - HTML",
          "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32028"
        },
        {
          "category": "self",
          "summary": "CVE-2023-32028 Microsoft SQL OLE DB Remote Code Execution Vulnerability - CSAF",
          "url": "https://msrc.microsoft.com/csaf/advisories/2023/msrc_cve-2023-32028.json"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-06-15T07:00:00.000Z",
          "details": "19.3.0001.0:Security Update:https://learn.microsoft.com/sql/connect/oledb/release-notes-for-oledb-driver-for-sql-server#1931",
          "product_ids": [
            "4"
          ],
          "url": "https://learn.microsoft.com/sql/connect/oledb/release-notes-for-oledb-driver-for-sql-server#1931"
        },
        {
          "category": "vendor_fix",
          "date": "2023-06-15T07:00:00.000Z",
          "details": "18.6.0006.0:Security Update:https://learn.microsoft.com/sql/connect/oledb/release-notes-for-oledb-driver-for-sql-server#1866",
          "product_ids": [
            "3"
          ],
          "url": "https://learn.microsoft.com/sql/connect/oledb/release-notes-for-oledb-driver-for-sql-server#1866"
        },
        {
          "category": "vendor_fix",
          "date": "2023-06-15T07:00:00.000Z",
          "details": "16.11.33:Security Update:https://docs.microsoft.com/en-us/visualstudio/releases/2019/release-notes-v16.11",
          "product_ids": [
            "7"
          ],
          "url": "https://docs.microsoft.com/en-us/visualstudio/releases/2019/release-notes-v16.11"
        },
        {
          "category": "vendor_fix",
          "date": "2023-06-15T07:00:00.000Z",
          "details": "17.2.23:Security Update:https://docs.microsoft.com/en-us/visualstudio/releases/2022/release-notes",
          "product_ids": [
            "6"
          ],
          "url": "https://docs.microsoft.com/en-us/visualstudio/releases/2022/release-notes"
        },
        {
          "category": "vendor_fix",
          "date": "2023-06-15T07:00:00.000Z",
          "details": "17.4.15:Security Update:https://learn.microsoft.com/en-us/visualstudio/releases/2022/release-notes",
          "product_ids": [
            "5"
          ],
          "url": "https://learn.microsoft.com/en-us/visualstudio/releases/2022/release-notes"
        },
        {
          "category": "vendor_fix",
          "date": "2023-06-15T07:00:00.000Z",
          "details": "17.6.11:Security Update:https://learn.microsoft.com/en-us/visualstudio/releases/2022/release-notes",
          "product_ids": [
            "2"
          ],
          "url": "https://learn.microsoft.com/en-us/visualstudio/releases/2022/release-notes"
        },
        {
          "category": "vendor_fix",
          "date": "2023-06-15T07:00:00.000Z",
          "details": "17.8.4:Security Update:https://learn.microsoft.com/en-us/visualstudio/releases/2022/release-notes",
          "product_ids": [
            "1"
          ],
          "url": "https://learn.microsoft.com/en-us/visualstudio/releases/2022/release-notes"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "environmentalsScore": 0.0,
            "exploitCodeMaturity": "UNPROVEN",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "remediationLevel": "OFFICIAL_FIX",
            "reportConfidence": "CONFIRMED",
            "scope": "UNCHANGED",
            "temporalScore": 6.8,
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
            "version": "3.1"
          },
          "products": [
            "1",
            "2",
            "3",
            "4",
            "5",
            "6",
            "7"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Remote Code Execution"
        },
        {
          "category": "exploit_status",
          "details": "Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation Less Likely"
        }
      ],
      "title": "Microsoft SQL OLE DB Remote Code Execution Vulnerability"
    }
  ]
}

FKIE_CVE-2023-32028

Vulnerability from fkie_nvd - Published: 2023-06-16 01:15 - Updated: 2024-11-21 08:02

Severity ?

7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Summary

Microsoft SQL OLE DB Remote Code Execution Vulnerability

References

	URL	Tags
	secure@microsoft.com	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32028	Patch, Vendor Advisory
	af854a3a-2127-422b-91ae-364da2661108	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32028	Patch, Vendor Advisory

Impacted products

Vendor	Product	Version
microsoft	ole_db_driver_for_sql_server	*
microsoft	ole_db_driver_for_sql_server	*
microsoft	sql_server	2019
microsoft	sql_server	2022

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:microsoft:ole_db_driver_for_sql_server:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "14AC92FA-A1F6-4DD6-9623-A2F33F59A4F9",
              "versionEndExcluding": "18.6.0006.0",
              "versionStartIncluding": "18.0.2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:microsoft:ole_db_driver_for_sql_server:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "6ABD3821-C5EB-4253-9D5E-6A1E29709AE3",
              "versionEndExcluding": "19.3.0001.0",
              "versionStartIncluding": "19.0.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:microsoft:sql_server:2019:*:*:*:*:*:x64:*",
              "matchCriteriaId": "9144F644-A3D4-440C-8978-257E71204617",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:microsoft:sql_server:2022:*:*:*:*:*:x64:*",
              "matchCriteriaId": "6CB7AD22-F27B-4807-88F1-02ED420421D5",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Microsoft SQL OLE DB Remote Code Execution Vulnerability"
    },
    {
      "lang": "es",
      "value": "Vulnerabilidad de ejecuci\u00f3n de c\u00f3digo remota de Microsoft OLE DB\n"
    }
  ],
  "id": "CVE-2023-32028",
  "lastModified": "2024-11-21T08:02:33.753",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 7.8,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "REQUIRED",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 1.8,
        "impactScore": 5.9,
        "source": "secure@microsoft.com",
        "type": "Secondary"
      }
    ]
  },
  "published": "2023-06-16T01:15:28.120",
  "references": [
    {
      "source": "secure@microsoft.com",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32028"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32028"
    }
  ],
  "sourceIdentifier": "secure@microsoft.com",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-122"
        }
      ],
      "source": "secure@microsoft.com",
      "type": "Secondary"
    },
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-noinfo"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

GHSA-9XW5-3469-C697

Vulnerability from github – Published: 2023-06-16 03:30 – Updated: 2023-12-14 18:30

Details

Microsoft OLE DB Remote Code Execution Vulnerability

Severity ?

7.8 (High)


                  
                    CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2023-32028"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2023-06-16T01:15:28Z",
    "severity": "HIGH"
  },
  "details": "Microsoft OLE DB Remote Code Execution Vulnerability",
  "id": "GHSA-9xw5-3469-c697",
  "modified": "2023-12-14T18:30:18Z",
  "published": "2023-06-16T03:30:34Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-32028"
    },
    {
      "type": "WEB",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32028"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
      "type": "CVSS_V3"
    }
  ]
}

WID-SEC-W-2023-1483

Vulnerability from csaf_certbund - Published: 2023-06-15 22:00 - Updated: 2023-06-15 22:00

Summary

Microsoft SQL Server ODBC Treiber: Mehrere Schwachstellen ermöglichen Codeausführung

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung

Der Microsoft SQL Server ist ein relationales Datenbankmanagementsystem von Microsoft.

Angriff

Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen im ODBC Treiber für den Microsoft SQL Server (MSSQL) ausnutzen, um beliebigen Programmcode auszuführen.

Betroffene Betriebssysteme

- Linux - MacOS X - Windows

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "mittel"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Der Microsoft SQL Server ist ein relationales Datenbankmanagementsystem von Microsoft.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen im ODBC Treiber f\u00fcr den Microsoft SQL Server (MSSQL) ausnutzen, um beliebigen Programmcode auszuf\u00fchren.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux\n- MacOS X\n- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2023-1483 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-1483.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2023-1483 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-1483"
      },
      {
        "category": "external",
        "summary": "Microsoft Security Advisory vom 2023-06-15",
        "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29349"
      },
      {
        "category": "external",
        "summary": "Microsoft Security Advisory vom 2023-06-15",
        "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32028"
      },
      {
        "category": "external",
        "summary": "Microsoft Security Advisory vom 2023-06-15",
        "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32027"
      },
      {
        "category": "external",
        "summary": "Microsoft Security Advisory vom 2023-06-15",
        "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32026"
      },
      {
        "category": "external",
        "summary": "Microsoft Security Advisory vom 2023-06-15",
        "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32025"
      },
      {
        "category": "external",
        "summary": "Microsoft Security Advisory vom 2023-06-15",
        "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29356"
      }
    ],
    "source_lang": "en-US",
    "title": "Microsoft SQL Server ODBC Treiber: Mehrere Schwachstellen erm\u00f6glichen Codeausf\u00fchrung",
    "tracking": {
      "current_release_date": "2023-06-15T22:00:00.000+00:00",
      "generator": {
        "date": "2024-08-15T17:52:38.155+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.5"
        }
      },
      "id": "WID-SEC-W-2023-1483",
      "initial_release_date": "2023-06-15T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2023-06-15T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Microsoft SQL Server (MSSQL) ODBC Driver MacOS 17",
                "product": {
                  "name": "Microsoft SQL Server (MSSQL) ODBC Driver MacOS 17",
                  "product_id": "T028163",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:microsoft:sql_server:macos_17"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Microsoft SQL Server (MSSQL) ODBC Driver MacOS 18",
                "product": {
                  "name": "Microsoft SQL Server (MSSQL) ODBC Driver MacOS 18",
                  "product_id": "T028164",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:microsoft:sql_server:macos_18"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Microsoft SQL Server (MSSQL) ODBC Driver Linux 17",
                "product": {
                  "name": "Microsoft SQL Server (MSSQL) ODBC Driver Linux 17",
                  "product_id": "T028165",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:microsoft:sql_server:linux_17"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Microsoft SQL Server (MSSQL) ODBC Driver Linux 18",
                "product": {
                  "name": "Microsoft SQL Server (MSSQL) ODBC Driver Linux 18",
                  "product_id": "T028166",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:microsoft:sql_server:linux_18"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Microsoft SQL Server (MSSQL) ODBC Driver Windows 17",
                "product": {
                  "name": "Microsoft SQL Server (MSSQL) ODBC Driver Windows 17",
                  "product_id": "T028167",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:microsoft:sql_server:windows_17"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Microsoft SQL Server (MSSQL) ODBC Driver Windows 18",
                "product": {
                  "name": "Microsoft SQL Server (MSSQL) ODBC Driver Windows 18",
                  "product_id": "T028168",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:microsoft:sql_server:windows_18"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SQL Server (MSSQL)"
          },
          {
            "category": "product_name",
            "name": "Microsoft SQL Server 2019 ODBC Driver CU21",
            "product": {
              "name": "Microsoft SQL Server 2019 ODBC Driver CU21",
              "product_id": "T028169",
              "product_identification_helper": {
                "cpe": "cpe:/a:microsoft:sql_server_2019:cu21"
              }
            }
          },
          {
            "category": "product_name",
            "name": "Microsoft SQL Server 2022 ODBC Driver CU5",
            "product": {
              "name": "Microsoft SQL Server 2022 ODBC Driver CU5",
              "product_id": "T028170",
              "product_identification_helper": {
                "cpe": "cpe:/a:microsoft:sql_server_2022:cu5"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Microsoft"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2023-32028",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen im ODBC Treiber f\u00fcr den Microsoft SQL Server. Die Fehler bestehen aufgrund einer unzureichenden Validierung von Eingaben. Ein entfernter, anonymer Angreifer kann diese Schwachstellen zur Ausf\u00fchrung von beliebigem Code ausnutzen. Um diese Schwachstellen erfolgreich auszunutzen, muss der Angreifer die Opfer dazu bringen, eine speziell gestaltete Datei zu \u00f6ffnen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T028165",
          "T028166",
          "T028163",
          "T028164",
          "T028170",
          "T028169",
          "T028167",
          "T028168"
        ]
      },
      "release_date": "2023-06-15T22:00:00.000+00:00",
      "title": "CVE-2023-32028"
    },
    {
      "cve": "CVE-2023-32027",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen im ODBC Treiber f\u00fcr den Microsoft SQL Server. Die Fehler bestehen aufgrund einer unzureichenden Validierung von Eingaben. Ein entfernter, anonymer Angreifer kann diese Schwachstellen zur Ausf\u00fchrung von beliebigem Code ausnutzen. Um diese Schwachstellen erfolgreich auszunutzen, muss der Angreifer die Opfer dazu bringen, eine speziell gestaltete Datei zu \u00f6ffnen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T028165",
          "T028166",
          "T028163",
          "T028164",
          "T028170",
          "T028169",
          "T028167",
          "T028168"
        ]
      },
      "release_date": "2023-06-15T22:00:00.000+00:00",
      "title": "CVE-2023-32027"
    },
    {
      "cve": "CVE-2023-32026",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen im ODBC Treiber f\u00fcr den Microsoft SQL Server. Die Fehler bestehen aufgrund einer unzureichenden Validierung von Eingaben. Ein entfernter, anonymer Angreifer kann diese Schwachstellen zur Ausf\u00fchrung von beliebigem Code ausnutzen. Um diese Schwachstellen erfolgreich auszunutzen, muss der Angreifer die Opfer dazu bringen, eine speziell gestaltete Datei zu \u00f6ffnen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T028165",
          "T028166",
          "T028163",
          "T028164",
          "T028170",
          "T028169",
          "T028167",
          "T028168"
        ]
      },
      "release_date": "2023-06-15T22:00:00.000+00:00",
      "title": "CVE-2023-32026"
    },
    {
      "cve": "CVE-2023-32025",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen im ODBC Treiber f\u00fcr den Microsoft SQL Server. Die Fehler bestehen aufgrund einer unzureichenden Validierung von Eingaben. Ein entfernter, anonymer Angreifer kann diese Schwachstellen zur Ausf\u00fchrung von beliebigem Code ausnutzen. Um diese Schwachstellen erfolgreich auszunutzen, muss der Angreifer die Opfer dazu bringen, eine speziell gestaltete Datei zu \u00f6ffnen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T028165",
          "T028166",
          "T028163",
          "T028164",
          "T028170",
          "T028169",
          "T028167",
          "T028168"
        ]
      },
      "release_date": "2023-06-15T22:00:00.000+00:00",
      "title": "CVE-2023-32025"
    },
    {
      "cve": "CVE-2023-29356",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen im ODBC Treiber f\u00fcr den Microsoft SQL Server. Die Fehler bestehen aufgrund einer unzureichenden Validierung von Eingaben. Ein entfernter, anonymer Angreifer kann diese Schwachstellen zur Ausf\u00fchrung von beliebigem Code ausnutzen. Um diese Schwachstellen erfolgreich auszunutzen, muss der Angreifer die Opfer dazu bringen, eine speziell gestaltete Datei zu \u00f6ffnen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T028165",
          "T028166",
          "T028163",
          "T028164",
          "T028170",
          "T028169",
          "T028167",
          "T028168"
        ]
      },
      "release_date": "2023-06-15T22:00:00.000+00:00",
      "title": "CVE-2023-29356"
    },
    {
      "cve": "CVE-2023-29349",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen im ODBC Treiber f\u00fcr den Microsoft SQL Server. Die Fehler bestehen aufgrund einer unzureichenden Validierung von Eingaben. Ein entfernter, anonymer Angreifer kann diese Schwachstellen zur Ausf\u00fchrung von beliebigem Code ausnutzen. Um diese Schwachstellen erfolgreich auszunutzen, muss der Angreifer die Opfer dazu bringen, eine speziell gestaltete Datei zu \u00f6ffnen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T028165",
          "T028166",
          "T028163",
          "T028164",
          "T028170",
          "T028169",
          "T028167",
          "T028168"
        ]
      },
      "release_date": "2023-06-15T22:00:00.000+00:00",
      "title": "CVE-2023-29349"
    }
  ]
}

GSD-2023-32028

Vulnerability from gsd - Updated: 2023-12-13 01:20

Details

Microsoft OLE DB Remote Code Execution Vulnerability

Aliases

CVE-2023-32028

Aliases

CVE-2023-32028

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2023-32028",
    "id": "GSD-2023-32028"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2023-32028"
      ],
      "details": "Microsoft OLE DB Remote Code Execution Vulnerability",
      "id": "GSD-2023-32028",
      "modified": "2023-12-13T01:20:23.324845Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "secure@microsoft.com",
        "ID": "CVE-2023-32028",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "Microsoft OLE DB Driver 19 for SQL Server",
                    "version": {
                      "version_data": [
                        {
                          "version_affected": "\u003c",
                          "version_name": "19.0.0",
                          "version_value": "19.3.0001.0"
                        }
                      ]
                    }
                  },
                  {
                    "product_name": "Microsoft OLE DB Driver 18 for SQL Server",
                    "version": {
                      "version_data": [
                        {
                          "version_affected": "\u003c",
                          "version_name": "18.0.0",
                          "version_value": "18.6.0006.0"
                        }
                      ]
                    }
                  },
                  {
                    "product_name": "Microsoft Visual Studio 2019 version 16.11 (includes 16.0 - 16.10)",
                    "version": {
                      "version_data": [
                        {
                          "version_affected": "\u003c",
                          "version_name": "16.11.0",
                          "version_value": "16.11.33"
                        }
                      ]
                    }
                  },
                  {
                    "product_name": "Microsoft Visual Studio 2022 version 17.2",
                    "version": {
                      "version_data": [
                        {
                          "version_affected": "\u003c",
                          "version_name": "17.2.0",
                          "version_value": "17.2.23"
                        }
                      ]
                    }
                  },
                  {
                    "product_name": "Microsoft Visual Studio 2022 version 17.4",
                    "version": {
                      "version_data": [
                        {
                          "version_affected": "\u003c",
                          "version_name": "17.4.0",
                          "version_value": "17.4.15"
                        }
                      ]
                    }
                  },
                  {
                    "product_name": "Microsoft Visual Studio 2022 version 17.6",
                    "version": {
                      "version_data": [
                        {
                          "version_affected": "\u003c",
                          "version_name": "17.6.0",
                          "version_value": "17.6.11"
                        }
                      ]
                    }
                  },
                  {
                    "product_name": "Microsoft Visual Studio 2022 version 17.8",
                    "version": {
                      "version_data": [
                        {
                          "version_affected": "\u003c",
                          "version_name": "17.8.0",
                          "version_value": "17.8.4"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "Microsoft"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Microsoft SQL OLE DB Remote Code Execution Vulnerability"
          }
        ]
      },
      "impact": {
        "cvss": [
          {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
            "version": "3.1"
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "Remote Code Execution"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32028",
            "refsource": "MISC",
            "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32028"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "cve": {
        "configurations": [
          {
            "nodes": [
              {
                "cpeMatch": [
                  {
                    "criteria": "cpe:2.3:a:microsoft:ole_db_driver_for_sql_server:*:*:*:*:*:*:*:*",
                    "matchCriteriaId": "14AC92FA-A1F6-4DD6-9623-A2F33F59A4F9",
                    "versionEndExcluding": "18.6.0006.0",
                    "versionStartIncluding": "18.0.2",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:microsoft:ole_db_driver_for_sql_server:*:*:*:*:*:*:*:*",
                    "matchCriteriaId": "6ABD3821-C5EB-4253-9D5E-6A1E29709AE3",
                    "versionEndExcluding": "19.3.0001.0",
                    "versionStartIncluding": "19.0.0",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:microsoft:sql_server:2019:*:*:*:*:*:x64:*",
                    "matchCriteriaId": "9144F644-A3D4-440C-8978-257E71204617",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:microsoft:sql_server:2022:*:*:*:*:*:x64:*",
                    "matchCriteriaId": "6CB7AD22-F27B-4807-88F1-02ED420421D5",
                    "vulnerable": true
                  }
                ],
                "negate": false,
                "operator": "OR"
              }
            ]
          }
        ],
        "descriptions": [
          {
            "lang": "en",
            "value": "Microsoft SQL OLE DB Remote Code Execution Vulnerability"
          },
          {
            "lang": "es",
            "value": "Vulnerabilidad de ejecuci\u00f3n de c\u00f3digo remota de Microsoft OLE DB\n"
          }
        ],
        "id": "CVE-2023-32028",
        "lastModified": "2023-12-14T16:15:44.833",
        "metrics": {
          "cvssMetricV31": [
            {
              "cvssData": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "HIGH",
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              "exploitabilityScore": 1.8,
              "impactScore": 5.9,
              "source": "secure@microsoft.com",
              "type": "Primary"
            }
          ]
        },
        "published": "2023-06-16T01:15:28.120",
        "references": [
          {
            "source": "secure@microsoft.com",
            "tags": [
              "Patch",
              "Vendor Advisory"
            ],
            "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32028"
          }
        ],
        "sourceIdentifier": "secure@microsoft.com",
        "vulnStatus": "Modified",
        "weaknesses": [
          {
            "description": [
              {
                "lang": "en",
                "value": "NVD-CWE-noinfo"
              }
            ],
            "source": "nvd@nist.gov",
            "type": "Primary"
          }
        ]
      }
    }
  }
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2023-32028 (GCVE-0-2023-32028)

CERTFR-2023-AVI-0469

Solution

MSRC_CVE-2023-32028

FKIE_CVE-2023-32028

GHSA-9XW5-3469-C697

WID-SEC-W-2023-1483

GSD-2023-32028

Tags

Sightings

Nomenclature