CVE-2017-8516

Name of the Vulnerable Software and Affected Versions Microsoft SQL Server Analysis Services versions 2012 through 2016

Description An information disclosure issue exists due to improper permission enforcement. If an attacker's credentials allow access to an affected SQL server database, they could exploit this to gain additional database and file information.

Recommendations For Microsoft SQL Server Analysis Services versions 2012 through 2016, update to a version that properly enforces permissions to resolve the issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.