Microsoft SQL Server Reporting Services Remote Code Execution Vulnerability for SQL Server 2016 SP2 CU11 (KB4535706) 64 bit
Risk Information
Base Score
8.8
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
94.252%
CVE Information
Patch Details
Patch associated with this vulnerability is supported by ManageEngine.
Patch ID
28431
Patch Description
Security Update for SQL Server 2016 SP2 CU11 (KB4535706) 64 bit
References
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2020-0618
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0618
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2019-1332
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1332