Description
Missing authentication for critical function in SQL Server allows an authorized attacker to elevate privileges over a network.
Published: 2026-01-13
Score: 7.2 High
EPSS: < 1% Very Low
KEV: No
Impact: Privilege Escalation
Action: Patch Immediately
AI Analysis

Impact

The vulnerability is a missing authentication check for a critical function in Microsoft SQL Server. An attacker who already has some level of authorized access can exploit the flaw to elevate their privileges within the database engine. This elevated privilege can lead to unauthorized data access, modification, or further attacks on the broader network, compromising confidentiality, integrity, and availability.

Affected Systems

Microsoft SQL Server 2022 (GDR) and the x64-based version with CU 22, as well as Microsoft SQL Server 2025 (GDR). The affected releases include the 17.0.1000.7 build for the x64 platform.

Risk and Exploitability

The CVSS score is 7.2, reflecting a high severity, while the EPSS score is less than 1%, indicating that, as of now, exploitation is unlikely to be widely observed. The vulnerability is not listed in the CISA KEV catalog, further suggesting low exploit visibility. The attack vector is likely remote network‑based, requiring the attacker to first authenticate to the SQL Server instance. Once authenticated, the attacker can invoke the vulnerable function and gain privileges beyond those originally granted.

Generated by OpenCVE AI on April 16, 2026 at 08:42 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Download and install the security update for Microsoft SQL Server 2022 and 2025 that addresses CVE‑2026‑20803 from Microsoft’s update guide.
  • Review database role permissions and ensure only necessary users have the roles that can invoke the vulnerable function, applying the principle of least privilege.
  • Apply network segmentation and firewall rules to limit exposure of SQL Server to trusted subnets and reduce the attack surface for privilege escalation.

Generated by OpenCVE AI on April 16, 2026 at 08:42 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 16 Jan 2026 22:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Fri, 16 Jan 2026 14:45:00 +0000

Type Values Removed Values Added
CPEs cpe:2.3:a:microsoft:sql_server_2025:17.0.1000.7:*:*:*:*:*:x64:*

Tue, 13 Jan 2026 18:15:00 +0000

Type Values Removed Values Added
Description Missing authentication for critical function in SQL Server allows an authorized attacker to elevate privileges over a network.
Title Microsoft SQL Server Elevation of Privilege Vulnerability
First Time appeared Microsoft
Microsoft sql Server 2022
Microsoft sql Server 2025
Weaknesses CWE-306
CPEs cpe:2.3:a:microsoft:sql_server_2022:*:*:*:*:*:*:x64:*
cpe:2.3:a:microsoft:sql_server_2025:*:*:*:*:*:*:x64:*
Vendors & Products Microsoft
Microsoft sql Server 2022
Microsoft sql Server 2025
References
Metrics cvssV3_1

{'score': 7.2, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C'}

Subscriptions

Microsoft Sql Server 2022 Sql Server 2025
cve-icon MITRE

Status: PUBLISHED

Assigner: microsoft

Published:

Updated: 2026-04-01T13:48:15.136Z

Reserved: 2025-12-03T05:54:20.370Z

Link: CVE-2026-20803

cve-icon Vulnrichment

Updated: 2026-01-13T19:41:13.468Z

cve-icon NVD

Status : Analyzed

Published: 2026-01-13T18:16:06.630

Modified: 2026-01-16T14:35:02.720

Link: CVE-2026-20803

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-16T08:45:26Z

Weaknesses