U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

Vulnerability Change Records for CVE-2024-37318

Change History

Reanalysis by NIST 8/20/2024 11:47:12 AM

Action Type Old Value New Value
Added CPE Configuration

								
							
							
						
OR
     *cpe:2.3:a:microsoft:sql_server_2016:*:*:*:*:*:*:*:* versions up to (excluding) 13.0.6441.1
     *cpe:2.3:a:microsoft:sql_server_2016:*:*:*:*:*:*:*:* versions from (including) 13.0.7000.253 up to (excluding) 13.0.7037.1
     *cpe:2.3:a:microsoft:sql_server_2017:*:*:*:*:*:*:*:* versions up to (excluding) 14.0.2056.2
     *cpe:2.3:a:microsoft:sql_server_2017:*:*:*:*:*:*:*:* versions from (including) 14.0.3456.2 up to (excluding) 14.0.3471.2
     *cpe:2.3:a:microsoft:sql_server_2019:*:*:*:*:*:*:*:* versions up to (excluding) 15.0.2116.2
     *cpe:2.3:a:microsoft:sql_server_2019:*:*:*:*:*:*:*:* versions from (including) 15.0.4375.4 up to (excluding) 15.0.4382.1
     *cpe:2.3:a:microsoft:sql_server_2022:*:*:*:*:*:*:*:* versions up to (excluding) 16.0.1121.4
     *cpe:2.3:a:microsoft:sql_server_2022:*:*:*:*:*:*:*:* versions from (including) 16.0.4125.3 up to (excluding) 16.0.4131.2
Removed CPE Configuration
OR
     *cpe:2.3:a:microsoft:sql_server_2016:13.0.6441.1:*:*:*:*:*:*:*
     *cpe:2.3:a:microsoft:sql_server_2016:13.0.7037.1:*:*:*:*:*:*:*
     *cpe:2.3:a:microsoft:sql_server_2017:14.0.2056.2:*:*:*:*:*:*:*
     *cpe:2.3:a:microsoft:sql_server_2017:14.0.3471.2:*:*:*:*:*:*:*
     *cpe:2.3:a:microsoft:sql_server_2019:15.0.2116.2:*:*:*:*:*:*:*
     *cpe:2.3:a:microsoft:sql_server_2019:15.0.4382.1:*:*:*:*:*:*:*
     *cpe:2.3:a:microsoft:sql_server_2022:16.0.1121.4:*:*:*:*:*:*:*
     *cpe:2.3:a:microsoft:sql_server_2022:16.0.4131.2:*:*:*:*:*:*:*