vulnerability
Microsoft Windows: CVE-2022-37982: Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 9 | (AV:N/AC:M/Au:N/C:C/I:C/A:C) | Oct 11, 2022 | Oct 11, 2022 | Sep 5, 2025 |
Severity
9
CVSS
(AV:N/AC:M/Au:N/C:C/I:C/A:C)
Published
Oct 11, 2022
Added
Oct 11, 2022
Modified
Sep 5, 2025
Description
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-38031.
Solutions
microsoft-windows-windows_10-1507-kb5018425microsoft-windows-windows_10-1607-kb5018411microsoft-windows-windows_10-1809-kb5018419microsoft-windows-windows_10-20h2-kb5018410microsoft-windows-windows_10-21h1-kb5018410microsoft-windows-windows_10-21h2-kb5018410microsoft-windows-windows_11-21h2-kb5018418microsoft-windows-windows_11-22h2-kb5018427microsoft-windows-windows_server_2012-kb5018478microsoft-windows-windows_server_2012_r2-kb5018476microsoft-windows-windows_server_2016-1607-kb5018411microsoft-windows-windows_server_2019-1809-kb5018419microsoft-windows-windows_server_2022-21h2-kb5018421microsoft-windows-windows_server_2022-22h2-kb5018421msft-kb5018446-a5b7769d-2348-4e49-acaf-56a2c767f192msft-kb5018446-fec27d5f-dd89-444c-a6b4-b23f892c15dfmsft-kb5018476-90f1a0a0-578a-441e-8f25-8d3f5828f602msft-kb5018476-ddd66c9d-19d4-4ef5-a3a4-227380afbb4emsft-kb5018478-a22cae2b-5a50-43bc-babc-33db7659bd7cmsft-kb5018478-fcab29f1-89a0-4b9c-8d6d-f145854079fdmsft-kb5018479-3eff8b57-45db-4cd6-aaa0-68378a9ec7f9msft-kb5018479-ac7e8db5-bcf8-454b-868f-c983458da9eemsft-kb5018479-e47b2f5c-462c-49ec-a201-6fd9c3fff485msft-kb5018479-e7395e51-1d20-41f6-98dc-92c487d3351amsft-kb5018479-f917b06c-4984-484f-92ea-e94f652ad53a
References
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.