Home

CVE-2025-59250

Description

Improper input validation in JDBC Driver for SQL Server allows an unauthorized attacker to perform spoofing over a network.

Risk Information

Base Score
8.1
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N
EPSS Score
Exploitation Probability
0.085

Associated Vulnerability

VulnerabilityOS Platform
Multiple Vulnerabilities are affected in IBM Sterling B2B Integrator 6.2.0.5Windows
Multiple Vulnerabilities are affected in IBM Sterling B2B Integrator 6.2.1.1Windows
Multiple Vulnerabilities are affected in IBM Sterling B2B Integrator 6.1.2.7Windows
Vulnerabilities CVE-2025-59250 are fixed in Microsoft - mssql-jdbc 11.2.4Windows
Vulnerabilities CVE-2025-59250 are fixed in Microsoft - mssql-jdbc 12.2.1Windows
Vulnerabilities CVE-2025-59250 are fixed in Microsoft - mssql-jdbc 12.6.5Windows
Vulnerabilities CVE-2025-59250 are fixed in Microsoft - mssql-jdbc 12.8.2Windows
Vulnerabilities CVE-2025-59250 are fixed in Microsoft - mssql-jdbc 12.10.2Windows
Vulnerabilities CVE-2025-59250 are fixed in Microsoft - mssql-jdbc 13.2.1Windows
Vulnerabilities CVE-2025-59250 are fixed in Microsoft - mssql-jdbc 10.2.4Windows
Vulnerabilities CVE-2025-59250 are fixed in Microsoft - mssql-jdbc for Linux 11.2.4Linux
Vulnerabilities CVE-2025-59250 are fixed in Microsoft - mssql-jdbc for Linux 12.2.1Linux
Vulnerabilities CVE-2025-59250 are fixed in Microsoft - mssql-jdbc for Linux 12.6.5Linux
Vulnerabilities CVE-2025-59250 are fixed in Microsoft - mssql-jdbc for Linux 12.8.2Linux
Vulnerabilities CVE-2025-59250 are fixed in Microsoft - mssql-jdbc for Linux 12.10.2Linux
Vulnerabilities CVE-2025-59250 are fixed in Microsoft - mssql-jdbc for Linux 13.2.1Linux
Vulnerabilities CVE-2025-59250 are fixed in Microsoft - mssql-jdbc for Linux 10.2.4Linux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234