Not a user yet?
Log in Register for free Suggest a product
Update

KB5065220: Fixes improper input validation

SQL Server 2022SQL Server 2022
Microsoft

KB5065220 - Description of the security update for SQL Server 2022 CU20: September 9, 2025

Summary
This security update contains fixes and resolves vulnerabilities. To learn more about the vulnerabilities, see the following security advisories:

  • CVE-2025-47997 - Microsoft SQL Server Information Disclosure Vulnerability
  • CVE-2025-55227 - Microsoft SQL Server Elevation of Privilege Vulnerability

The Microsoft SQL Server components are updated to the following builds in this security update:

  • SQL Server - product version: 16.0.4212.1, file version: 2022.160.4212.1

Improvements and fixes included in this update
A downloadable Excel workbook that contains a summary list of builds, together with their current support lifecycle, is available. The Excel file also contains detailed fix lists.

  • Bug reference: 4519077
    Fixes an issue in which DMVs are used in specific scenarios to inspect the text of statements that are running in other sessions and might contain sensitive data.
  • Bug reference: 4537398
    Fixes improper input validation that occurs during internal temporal history table cleanup and that enables attackers to run SQL code by having elevated privileges.
More updatesTo the product
Receive Important Update Messages Stay tuned for upcoming Microsoft updates

More from the Apps & Software section

Was the content helpful to you?

Advertisement Advertise here?
Udemy IT certification ad