CVE-2023-38169: Microsoft SQL OLE DB Remote Code Execution Vulnerability
First published: Tue Aug 08 2023(Updated: )
Microsoft OLE DB Remote Code Execution Vulnerability
Credit: secure@microsoft.com secure@microsoft.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Microsoft OLE DB Driver 19 for SQL Server | ||
| Microsoft ODBC Driver 17 for SQL Server on MacOS | ||
| Microsoft SQL Server 2022 (CU 5) | ||
| Microsoft OLE DB Driver 18 for SQL Server | ||
| Microsoft ODBC Driver 17 for SQL Server on Linux | ||
| Microsoft ODBC Driver 18 for SQL Server on MacOS | ||
| Microsoft SQL Server 2019 (CU 21) | ||
| Microsoft ODBC Driver 18 for SQL Server on Windows | ||
| Microsoft ODBC Driver 17 for SQL Server on Windows | ||
| Microsoft ODBC Driver 18 for SQL Server on Linux | ||
| Microsoft SQL Server 2019 (CU 21) | ||
| Microsoft SQL Server 2022 (CU 5) | ||
| Microsoft Odbc Driver For Sql Server | =17.0.1.1 | |
| Microsoft Odbc Driver For Sql Server | =17.0.1.1 | |
| Microsoft Odbc Driver For Sql Server | =17.0.1.1 | |
| Microsoft Odbc Driver For Sql Server | =17.10.3.1 | |
| Microsoft Odbc Driver For Sql Server | =17.10.3.1 | |
| Microsoft Odbc Driver For Sql Server | =17.10.3.1 | |
| Microsoft Odbc Driver For Sql Server | =17.10.4.1 | |
| Microsoft Odbc Driver For Sql Server | =17.10.4.1 | |
| Microsoft Odbc Driver For Sql Server | =18.0.1.1 | |
| Microsoft Odbc Driver For Sql Server | =18.0.1.1 | |
| Microsoft Odbc Driver For Sql Server | =18.0.1.1 | |
| Microsoft Odbc Driver For Sql Server | =18.1.2.1 | |
| Microsoft Odbc Driver For Sql Server | =18.1.2.1 | |
| Microsoft Odbc Driver For Sql Server | =18.1.2.1 | |
| Microsoft Odbc Driver For Sql Server | =18.2.1.1 | |
| Microsoft Odbc Driver For Sql Server | =18.2.1.1 | |
| Microsoft Odbc Driver For Sql Server | =18.2.1.1 | |
| Microsoft OLE DB Driver for SQL Server | =18.0.2 | |
| Microsoft OLE DB Driver for SQL Server | =18.1.0 | |
| Microsoft OLE DB Driver for SQL Server | =18.2.1 | |
| Microsoft OLE DB Driver for SQL Server | =18.2.2 | |
| Microsoft OLE DB Driver for SQL Server | =18.2.3 | |
| Microsoft OLE DB Driver for SQL Server | =18.3.0 | |
| Microsoft OLE DB Driver for SQL Server | =18.4.0 | |
| Microsoft OLE DB Driver for SQL Server | =18.5.0 | |
| Microsoft OLE DB Driver for SQL Server | =18.6.0 | |
| Microsoft OLE DB Driver for SQL Server | =19.0.0 | |
| Microsoft OLE DB Driver for SQL Server | =19.1.0 | |
| Microsoft OLE DB Driver for SQL Server | =19.2.0 | |
| Microsoft OLE DB Driver for SQL Server | =19.3.0 | |
| Microsoft OLE DB Driver for SQL Server | =19.3.1 | |
| Microsoft SQL Server | =2019 | |
| Microsoft SQL Server | =2022 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2023-38169?
CVE-2023-38169 is a Microsoft OLE DB Remote Code Execution Vulnerability that affects various versions of Microsoft SQL Server and OLE DB drivers.
How severe is CVE-2023-38169?
CVE-2023-38169 has a severity rating of 8.8, which is considered high.
Which software is affected by CVE-2023-38169?
Various versions of Microsoft SQL Server and OLE DB drivers are affected by CVE-2023-38169.
How can I fix CVE-2023-38169?
To fix CVE-2023-38169, apply the relevant patches or updates provided by Microsoft for the affected software versions.
Where can I find more information about CVE-2023-38169?
You can find more information about CVE-2023-38169 on the Microsoft Security Response Center website.
- collector/msrc
- agent/author
- agent/type
- agent/first-publish-date
- collector/msrc-cve
- source/Microsoft
- agent/software-canonical-lookup
- agent/title
- agent/severity
- agent/references
- agent/remedy
- agent/description
- agent/event
- agent/last-modified-date
- agent/weakness
- agent/tags
- collector/mitre-cve
- source/MITRE
- agent/softwarecombine
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-api
- source/NVD
- vendor/microsoft
- canonical/microsoft ole db driver 19 for sql server
- canonical/microsoft odbc driver 17 for sql server on macos
- canonical/microsoft sql server 2022 (cu 5)
- canonical/microsoft ole db driver 18 for sql server
- canonical/microsoft odbc driver 17 for sql server on linux
- canonical/microsoft odbc driver 18 for sql server on macos
- canonical/microsoft sql server 2019 (cu 21)
- canonical/microsoft odbc driver 18 for sql server on windows
- canonical/microsoft odbc driver 17 for sql server on windows
- canonical/microsoft odbc driver 18 for sql server on linux
- canonical/microsoft odbc driver for sql server
- version/microsoft odbc driver for sql server/17.0.1.1
- version/microsoft odbc driver for sql server/17.10.3.1
- version/microsoft odbc driver for sql server/17.10.4.1
- version/microsoft odbc driver for sql server/18.0.1.1
- version/microsoft odbc driver for sql server/18.1.2.1
- version/microsoft odbc driver for sql server/18.2.1.1
- canonical/microsoft ole db driver for sql server
- version/microsoft ole db driver for sql server/18.0.2
- version/microsoft ole db driver for sql server/18.1.0
- version/microsoft ole db driver for sql server/18.2.1
- version/microsoft ole db driver for sql server/18.2.2
- version/microsoft ole db driver for sql server/18.2.3
- version/microsoft ole db driver for sql server/18.3.0
- version/microsoft ole db driver for sql server/18.4.0
- version/microsoft ole db driver for sql server/18.5.0
- version/microsoft ole db driver for sql server/18.6.0
- version/microsoft ole db driver for sql server/19.0.0
- version/microsoft ole db driver for sql server/19.1.0
- version/microsoft ole db driver for sql server/19.2.0
- version/microsoft ole db driver for sql server/19.3.0
- version/microsoft ole db driver for sql server/19.3.1
- canonical/microsoft sql server
- version/microsoft sql server/2019
- version/microsoft sql server/2022