CVE-2017-8516

Microsoft SQL Server Analysis Services in Microsoft SQL Server 2012, Microsoft SQL Server 2014, and Microsoft SQL Server 2016 allows an information disclosure vulnerability when it improperly enforces permissions, aka "Microsoft SQL Server Analysis Services Information Disclosure Vulnerability".
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.5 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
microsoftCNA
---
---
CVEADP
---
---
Awaiting analysis
This vulnerability is currently awaiting analysis.
Base Score
CVSS 3.x
EPSS Score
Percentile: 76%
Common Weakness Enumeration
References
http://www.securityfocus.com/bid/100041
http://www.securitytracker.com/id/1039110
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8516
http://www.securityfocus.com/bid/100041
http://www.securitytracker.com/id/1039110
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8516