CVE-2025-49758

Name of the Vulnerable Software and Affected Versions SQL Server (affected versions not specified)

Description The software contains an improper neutralization of special elements in SQL commands, leading to a potential SQL injection issue. This allows an authorized attacker to elevate privileges over a network. Additionally, an elevation-of-privilege issue can allow attackers to affect the system. The vulnerability is related to incorrect privilege assignment within the database management system.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.