Rapid7 Vulnerability & Exploit Database

Microsoft Windows: CVE-2024-21441: Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

Free InsightVM Trial No Credit Card Necessary

2024 Attack Intel Report Latest research by Rapid7 Labs

Back to Search

Microsoft Windows: CVE-2024-21441: Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

Severity

CVSS

(AV:N/AC:M/Au:N/C:C/I:C/A:C)

Published

03/12/2024

Created

03/13/2024

Added

03/12/2024

Modified

06/10/2024

Description

Microsoft Windows: CVE-2024-21441: Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

Solution(s)

microsoft-windows-windows_10-1507-kb5035858
microsoft-windows-windows_10-1607-kb5035855
microsoft-windows-windows_10-1809-kb5035849
microsoft-windows-windows_10-21h2-kb5035845
microsoft-windows-windows_10-22h2-kb5035845
microsoft-windows-windows_11-21h2-kb5035854
microsoft-windows-windows_11-22h2-kb5035853
microsoft-windows-windows_11-23h2-kb5035853
msft-kb5035849-69c36f19-90e0-49fb-b0f2-f317be093b59
msft-kb5035855-0da3d9cc-c698-4135-823d-8acd26dff3b4
msft-kb5035856-79727266-4527-4757-bfd8-4d0fcd399bcf
msft-kb5035857-748c24d5-2f5a-4d54-a19c-3c21dbfcb49f
msft-kb5035857-a7dad4d4-48b1-41e2-89e7-004e046c053b
msft-kb5035885-66091aff-518f-4b15-824e-f2d500423b4c
msft-kb5035888-78d250c5-4777-4953-b36a-f8ebeffb6678
msft-kb5035919-c1dacfec-e6e8-4c76-8c15-14fa0a371340
msft-kb5035920-1c385d43-100d-41d2-be67-0957979cc3c3
msft-kb5035920-d9d460fb-2770-4e30-bef1-ef4062030a5f
msft-kb5035930-56db070c-2e0c-4c3a-a638-6d840b4445e5
msft-kb5035933-bb173464-b365-4396-a82d-18c6470ea72f
msft-kb5035933-ff333c16-6e30-41f8-b970-a5d69f9a81ff

References

https://attackerkb.com/topics/cve-2024-21441
CVE - 2024-21441
5035845
5035849
5035853
5035854
5035855
5035856
5035857
5035858
5035885
5035888
5035919
5035920
5035930
5035933
https://support.microsoft.com/help/5035845
https://support.microsoft.com/help/5035849
https://support.microsoft.com/help/5035853
https://support.microsoft.com/help/5035854
https://support.microsoft.com/help/5035855
https://support.microsoft.com/help/5035858

Advanced vulnerability management analytics and reporting.

Key Features

Free InsightVM Trial View All Features

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;

Rapid7 Vulnerability & Exploit Database

Microsoft Windows: CVE-2024-21441: Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

Microsoft Windows: CVE-2024-21441: Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

Description

Solution(s)

References

Success! Thank you for submission. We will be in touch shortly.

Oops! There was a problem in submission. Please try again.

Submit your information and we will get in touch with you.