THREAT OPS › CVEs › CVE-2020-0618
CVE-2020-0618 — Microsoft SQL Server Reporting Services Remote Code Execution Vulnerability
Microsoft SQL Server Reporting Services contains a deserialization vulnerability when handling page requests incorrectly. An authenticated attacker can exploit this vulnerability to execute code in the context of the Report Server service account.
Vulnerability details
- Affected productsSQL Server
- KEV remediation due2024-10-09