The remote Windows host is missing security update 5022297. It is, therefore, affected by multiple vulnerabilities

– Microsoft ODBC Driver Remote Code Execution Vulnerability (CVE-2023-21732)

– Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability (CVE-2023-21681)

– Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vulnerability (CVE-2023-21674)

Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number.Read More