vulnerability
Microsoft CVE-2017-8516: Microsoft SQL Server Analysis Services Information Disclosure Vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:N/AC:L/Au:N/C:P/I:N/A:N) | Aug 8, 2017 | Aug 8, 2017 | Aug 22, 2019 |
Severity
5
CVSS
(AV:N/AC:L/Au:N/C:P/I:N/A:N)
Published
Aug 8, 2017
Added
Aug 8, 2017
Modified
Aug 22, 2019
Description
An information disclosure vulnerability exists in Microsoft SQL Server Analysis Services when it improperly enforces permissions. An attacker could exploit the vulnerability if the attacker's credentials allow access to an affected SQL server database.
An attacker who successfully exploited the vulnerability could gain additional database and file information.
The security update addresses the vulnerability by correcting how SQL Server Analysis Services enforces permissions.
Solutions
msft-kb4019086-50bda3e8-0787-40d3-8690-2df9220406ae-x64msft-kb4019088-89d0b97e-c24f-45e7-9339-4bb561eaee8e-x64msft-kb4019089-cd25be50-8da5-4678-a5cf-1d52b73af8ce-x64msft-kb4019090-6ba170c0-f9ce-44b5-a019-6c4bd8d0d79a-x64msft-kb4019090-6ba170c0-f9ce-44b5-a019-6c4bd8d0d79a-x86msft-kb4019091-18a26a32-7a1a-45a3-b9a7-e442b94e9359-x64msft-kb4019091-18a26a32-7a1a-45a3-b9a7-e442b94e9359-x86msft-kb4019092-f2d5cd02-ae12-4a69-8b85-edc150b32f59-x64msft-kb4019092-f2d5cd02-ae12-4a69-8b85-edc150b32f59-x86msft-kb4019093-5f3819d7-ad79-4ab6-b605-f260260e5086-x64msft-kb4019093-5f3819d7-ad79-4ab6-b605-f260260e5086-x86msft-kb4019095-1b0321aa-7ab3-4b01-9659-c0095fb7ba7f-x64msft-kb4032542-99e4a5e1-9c80-4fd1-b919-a1749169e57e-x64msft-kb4032542-99e4a5e1-9c80-4fd1-b919-a1749169e57e-x86msft-kb4036996-939f5f95-1f54-4bd5-8fed-203c98e6cb19-x64msft-kb4036996-939f5f95-1f54-4bd5-8fed-203c98e6cb19-x86
References
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.