Microsoft Microsoft Sql Server 2025 (Cu 6)

7 CVEs affecting Microsoft Microsoft Sql Server 2025 (Cu 6). Latest disclosed: 2026-07-14. Critical: 0, High: 5.

Top CVEs affecting Microsoft Microsoft Sql Server 2025 (Cu 6)
CVESeverityScorePublishedSummary
CVE-2026-47295High8.82026-07-14Improper neutralization of special elements used in an sql command ('sql injection') in SQL Server allows an authorized attacker to elevate privileges over a n…
CVE-2026-54118High8.82026-07-14Deserialization of untrusted data in SQL Server allows an authorized attacker to execute code over a network.
CVE-2026-54117High8.82026-07-14Deserialization of untrusted data in SQL Server allows an authorized attacker to execute code over a network.
CVE-2026-55002High7.82026-07-14External control of file name or path in SQL Server allows an authorized attacker to elevate privileges locally.
CVE-2026-47296High7.82026-07-14Improper neutralization of special elements used in an sql command ('sql injection') in SQL Server allows an authorized attacker to elevate privileges locally.
CVE-2026-54116Medium6.52026-07-14Access of resource using incompatible type ('type confusion') in SQL Server allows an authorized attacker to disclose information over a network.
CVE-2026-50468Medium6.52026-07-14Buffer over-read in SQL Server allows an authorized attacker to disclose information over a network.