CVE-2023-21798 HIGH

CVE-2023-21798: Microsoft ODBC Driver Remote Code Execution Vulnerability

Vendor Microsoft
Product Windows 10 Version 1809
Weakness CWE-125
Published February 14, 2023
Last update January 1, 2025
View on NVD All CVEs

CVSS base score

8.8/10
Attack vector Network
Attack complexity Low
Privileges required None
User interaction Required
Confidentiality High
Integrity High

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

What the vulnerability does

01Description

Microsoft ODBC Driver Remote Code Execution Vulnerability

Key dates

02Disclosure timeline

February 14, 2023 CVE published
January 1, 2025 Record updated

Related vulnerabilities

04Related CVE

CVE-2025-9324 Foxit PDF Reader PRC File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability CVE-2026-44067 EA header parsing heap over-read CVE-2026-1334 Out-Of-Bounds Read vulnerability affecting the EPRT file reading procedure in SOLIDWORKS eDrawings from Release SOLIDWORKS Desktop 2025 through Release SOLIDWORKS Desktop 2026 CVE-2022-35707 Adobe Bridge SGI File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability CVE-2024-38102 Windows Layer-2 Bridge Network Driver Denial of Service Vulnerability