CVE-2002-0645

EPSS 1.99%
Published 12.08.2002 04:00:00
Last modified 03.04.2025 01:03:51
Source cve@mitre.org
Teams watchlist Login
Open Login

SQL injection vulnerability in stored procedures for Microsoft SQL Server 2000 and Microsoft Desktop Engine (MSDE) 2000 may allow authenticated users to execute arbitrary commands.

Affected products Warnungen 0 Metrics 2 CWE 0 References 4

Data is provided by the National Vulnerability Database (NVD)

Microsoft ≫ Data Engine Version2000

Microsoft ≫ Sql Server Version2000

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	1.99%	0.82

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.5	10	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-038

https://nvd.nist.gov/vuln/detail/CVE-2002-0645

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2002-0645

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2002-0645

EUVD