Hi Team,
We got one MS SQL Management studio(ODBC) Vulnerability on Commserve.
Plugin Output:
Path : C:\Program Files (x86)\Microsoft SQL Server Management Studio 18\Common7\IDE\Mashup\ODBC Drivers\Simba Spark ODBC Driver\LibCurl32.DllA\libcurl.dll
Installed version : 7.66.0.0
Fixed version : 8.9.1
As per commvault case 250807-187(this case is closed),
This is not a SQL core vulnerability but a SSMS vulnerability.
You can either ignore it or upgrade your SSMS and ODBC drives to remediate that.
Commvault is not affected by this vulnerability.
We are upgrading from 11.32 to 11.36 for production before that we did upgrade of test commserve to 11.36. .I see the SQL version there is also upgraded from sql 2019 to sql2022.SS Management studio is still 18.x.
If I upgrade SSMS to 20.x(as per Support advise) will there be any impact on Commserve operations.I am reaching here since SQL server is used by Commvault stack and want to know if it works for SSMS 20.x also.Do I need to uninstall SSMS 18.x first?
