This is the Trace Id: 2f436ed74ed20f672c2d8a5b0f64a771
Skip to main content Microsoft 365 Office Azure Copilot Windows Xbox Support Windows Apps OneDrive Outlook Moving from Skype to Teams OneNote Microsoft Teams Shop Xbox Accessories Xbox games Microsoft AI Microsoft Security Azure Dynamics 365 Microsoft 365 for business Microsoft Power Platform Windows 365 Digital Sovereignty Microsoft Developer Microsoft Learn Support for AI marketplace apps Microsoft Tech Community Microsoft Marketplace Software companies Visual Studio Free downloads & security Education Gift cards Licensing View Sitemap

Security Update for SQL Server 2014 SP3 CU4 (KB4535288)

This update refreshes Microsoft SQL Server 2014 SP3 CU4

Important! Selecting a language below will dynamically change the complete page content to that language.

  • Version:

    12.0.6372.1

    Date Published:

    7/15/2024

    File Name:

    SQLServer2014-KB4535288-x86.exe

    SQLServer2014-KB4535288-x64.exe

    File Size:

    379.3 MB

    604.5 MB

    A remote code execution vulnerability exists in Microsoft SQL Server Reporting Services when it incorrectly handles page requests. An attacker who successfully exploited this vulnerability could execute code in the context of the Report Server service account.
    To exploit the vulnerability, an authenticated attacker would need to submit a specially crafted page request to an affected Reporting Services instance.
    The security update addresses the vulnerability by modifying how the Microsoft SQL Server Reporting Services handles page requests.

    For a complete listing of the issues resolved in this update, see the associated Microsoft Knowledge Base article - KB4535288

    The following SQL Server security updates contain this SQL Server Reporting Services fix and are available for download:
    Security Update for SQL Server 2016 SP2 CU11 (KB4535706)

    Security Update for SQL Server 2016 SP2 GDR (KB4532097)

    Security Update for SQL Server 2014 SP3 CU4 (KB4535288)

    Security Update for SQL Server 2014 SP3 GDR (KB4532095)

    Security Update for SQL Server 2012 SP4 GDR (KB4532098)

  • Supported Operating Systems

    Windows 8, Windows Server 2019, Windows Server 2016, Windows Server 2012, Windows Server 2012 R2, Windows 10, Windows 8.1

    This update is applicable to SQL Server 2014 SP3 CU instances.

  • This update refreshes Microsoft SQL Server 2014 SP3 CU that have had a Cumulative Update applied (versions 12.0.6205.1(CU1) - 12.0.6329.1(CU4). After you install this update, you may have to restart your computer. For Microsoft SQL Server 2014 SP3 instances that have not had any Cumulative Update applied (versions 12.0.6024.0 - 12.0.6108.1), please see Security Update for SQL Server 2014 SP3 GDR (KB4532095).
Back To Top
Copilot for organizations Copilot for personal use Microsoft 365 Explore Microsoft products Microsoft 365 Family Microsoft 365 Personal Windows 11 apps Account profile Download Center Returns Order tracking Microsoft in education Devices for education Microsoft Teams for Education Microsoft 365 Education Office Education Educator training and development Deals for students and parents Azure for students
Microsoft AI Microsoft Security Azure Dynamics 365 Microsoft 365 Microsoft Advertising Microsoft 365 Copilot Microsoft Teams Microsoft Developer Documentation Microsoft Learn Microsoft Tech Community Microsoft Marketplace Microsoft Power Platform Visual Studio Careers Company news Privacy at Microsoft Investors Sustainability
English (Philippines)
Your Privacy Choices Opt-Out Icon Your Privacy Choices
Consumer Health Privacy Contact Microsoft Privacy Manage cookies Terms of use Trademarks About our ads