CVE-2025-59499

Name of the Vulnerable Software and Affected Versions SQL Server (affected versions not specified)

Description The software contains an SQL injection issue due to improper neutralization of special elements used in SQL commands. This allows an authorized attacker to elevate privileges over a network by manipulating input data within SQL queries. The issue occurs when user input is not correctly validated or sanitized before being incorporated into SQL queries.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.