CVE-2026-32176
MEDIUM
NVD
CVSS Score
6.7
Severity
MEDIUM
Published
Apr 14, 2026
Vendor
unknown
Description
Improper neutralization of special elements used in an sql command ('sql injection') in SQL Server allows an authorized attacker to elevate privileges locally.