PT-2025-45745 · Maven · Com.Microsoft.Sqlserver:Mssql-Jdbc

Published

2025-10-14

·

Updated

2025-10-14

CVSS v3.1

8.1

High

VectorAV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N
Improper input validation in JDBC Driver for SQL Server allows an unauthorized attacker to perform spoofing over a network.

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

GHSA-M494-W24Q-6F7W

Affected Products

Com.Microsoft.Sqlserver:Mssql-Jdbc