Описание (на английском; русское — в БДУ выше)
Microsoft.Data.SqlClient and System.Data.SqlClient SQL Data Provider Security Feature Bypass Vulnerability
Затрагиваемое ПО
Microsoft Microsoft.data.sqlclientMicrosoft Sql serverMicrosoft System.data.sqlclientMicrosoft Visual studio 2022Microsoft .net frameworkMicrosoft Windows 10 1607Microsoft Windows server 2008Microsoft Windows server 2012Microsoft Windows server 2016Microsoft Windows 10 1809Microsoft Windows 10 21h2Microsoft Windows 10 22h2Microsoft Windows 11 21h2Microsoft Windows 11 22h2Microsoft Windows 11 23h2Microsoft Windows server 2019Microsoft Windows server 2022Microsoft Windows server 2022 23h2Microsoft .net
CVSS
| Балл | 8.7 — высокая |
| Вектор | CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N |
Источники
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-0056https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-0056