Unrated severityNVD Advisory· Published Jan 13, 2026· Updated Apr 1, 2026
Microsoft SQL Server Elevation of Privilege Vulnerability
CVE-2026-20803
Description
Missing authentication for critical function in SQL Server allows an authorized attacker to elevate privileges over a network.
Affected products
3- Microsoft/Microsoft SQL Server 2022 for x64-based Systems (CU 22)v5Range: 16.0.0.0
- Microsoft/Microsoft SQL Server 2022 (GDR)v5Range: 16.0.0
- Microsoft/Microsoft SQL Server 2025 for x64-based Systems (GDR)v5Range: 17.0.1050.2
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1- msrc.microsoft.com/update-guide/vulnerability/CVE-2026-20803mitrevendor-advisorypatch
News mentions
0No linked articles in our index yet.