May 21, 2021 at 5:05 pm
while during security audits to my sql 2019 servers , the vulnerability CVE-2021-1636 keeps coming out eventhough I have installed latest build CU10 in my servers already. My question is can i install the security update https://www.microsoft.com/en-us/download/details.aspx?id=102617 to my SQL 2019 CU10 servers? I see the latest build where i can install this security update for sql 2019 to be CU8.
https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2021-1636
May 22, 2021 at 5:10 pm
Thanks for posting your issue and hopefully someone will answer soon.
This is an automated bump to increase visibility of your question.
May 23, 2021 at 6:12 am
What are you using to security scan?
nessus is giving us these false positives as it thinks the definition is that the build number that Nessus wants isn’t the latest build so even though it’s patched Nessus thinks it isn’t.
You may need to update your definitions
Viewing 3 posts - 1 through 2 (of 2 total)
You must be logged in to reply to this topic. Login to reply