Tag

Sql Server

All articles tagged with #sql server

cybersecurity4 hours ago•53 min saved

Critical SQL Server zero-day lets attackers escalate to full admin control

Microsoft disclosed a critical zero-day in SQL Server (CVE-2026-21262) that enables an authenticated attacker to escalate to the sysadmin role via improper access control. The flaw has a CVSS v3.1 base score of 8.8 (Important) and is exploitable over the network with low complexity and no user interaction. While not yet observed in the wild, the disclosure lowers the barrier for exploits. Microsoft has released patches for SQL Server 2016–2025; administrators should urgently apply updates, audit permissions, restrict privileged access, and upgrade unsupported versions to receive future fixes.

via CyberSecurityNews|

#cve-2026-21262 #cybersecurity #patching

technology8 months ago•5 min saved

Microsoft Releases July 2025 Security Updates with Critical Patches and Improvements

Microsoft released updates fixing 130 vulnerabilities in its products, including critical flaws in SPNEGO and SQL Server, ending a streak of patching exploited zero-days; the most severe is a remote code execution flaw in SPNEGO that could be wormable, requiring immediate attention from users and administrators.

via The Hacker News|

#microsoft #patch-tuesday #remote-code-execution