Description
Access of resource using incompatible type ('type confusion') in SQL Server allows an authorized attacker to disclose information over a network.
Analysis and contextual insights are available on OpenCVE Cloud.
Remediation
No vendor fix or workaround currently provided.
Additional remediation guidance may be available on OpenCVE Cloud.
Tracking
Sign in to view the affected projects.
Advisories
No advisories yet.
References
History
Tue, 14 Jul 2026 17:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Access of resource using incompatible type ('type confusion') in SQL Server allows an authorized attacker to disclose information over a network. | |
| Title | Microsoft SQL Server Information Disclosure Vulnerability | |
| First Time appeared |
Microsoft
Microsoft sql Server 2025 |
|
| Weaknesses | CWE-843 | |
| CPEs | cpe:2.3:a:microsoft:sql_server_2025:*:*:*:*:*:*:x64:* | |
| Vendors & Products |
Microsoft
Microsoft sql Server 2025 |
|
| References |
| |
| Metrics |
cvssV3_1
|
Status: PUBLISHED
Assigner: microsoft
Published:
Updated: 2026-07-14T18:44:19.698Z
Reserved: 2026-06-11T20:33:37.835Z
Link: CVE-2026-54116
No data.
No data.
No data.
OpenCVE Enrichment
No data.
Weaknesses