CVE Daily

CVE-2025-49718

Use of uninitialized resource in SQL Server allows an unauthorized attacker to d...

High CVSS 7.5

Overview

Use of uninitialized resource in SQL Server allows an unauthorized attacker to disclose information over a network.

CWE: CWE-908 Published: 2025-07-08T17:15:59.267
Risk analysis

This vulnerability is rated 🟠 HIGH.

  • CVSS: 7.5 (HIGH)
  • Detected tags: unauth_access (tag impact: HIGH)

Recommended actions:

  • Enforce authentication/authorization; reduce default endpoint exposure.

Recommended tools

Tags