VYPR
High severityNVD Advisory· Published Oct 14, 2025· Updated Feb 26, 2026

JDBC Driver for SQL Server Spoofing Vulnerability

CVE-2025-59250

Description

Improper input validation in JDBC Driver for SQL Server allows an unauthorized attacker to perform spoofing over a network.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
com.microsoft.sqlserver:mssql-jdbcMaven
>= 8.3.0.jre11-preview, < 10.2.4.jre1110.2.4.jre11
com.microsoft.sqlserver:mssql-jdbcMaven
>= 11.2.0.jre11, < 11.2.4.jre1111.2.4.jre11
com.microsoft.sqlserver:mssql-jdbcMaven
>= 12.2.0.jre11, < 12.2.1.jre1112.2.1.jre11
com.microsoft.sqlserver:mssql-jdbcMaven
>= 12.6.0.jre11, < 12.6.5.jre1112.6.5.jre11
com.microsoft.sqlserver:mssql-jdbcMaven
>= 12.8.0.jre11, < 12.8.2.jre1112.8.2.jre11
com.microsoft.sqlserver:mssql-jdbcMaven
>= 12.10.0.jre11, < 12.10.2.jre1112.10.2.jre11
com.microsoft.sqlserver:mssql-jdbcMaven
>= 13.2.0.jre11, < 13.2.1.jre1113.2.1.jre11

Affected products

203

Patches

Vulnerability mechanics

References

12

News mentions

0

No linked articles in our index yet.