KB4036996: Security Update for SQL Server (August 2017)
Medium Nessus Plugin ID 102271
The remote SQL server is affected by an information disclosure vulnerability.
The remote Microsoft SQL Server is missing a security update. It is, therefore, affected by an information disclosure vulnerability in Microsoft SQL Server Analysis Services when it improperly enforces permissions. An attacker could exploit the vulnerability if the attacker's credentials allow access to an affected SQL server database. An attacker who successfully exploited the vulnerability could gain additional database and file information.
Microsoft has released a set of patches for SQL Server 2012, 2014, and 2016.