AZL-38146 CVE-2020-13630 affecting package ceph for versions less than 18.2.1-1

🗓️ 27 May 2020 15:15:12Reported by GoogleType

osv

osv🔗 osv.dev👁 2 Views

Ceph versions before 18.2.1-1 have a SQLite use-after-free in fts3EvalNextRow with the snippet feature.

Reporter	Title	Published	Views	Family All 150
IBM Security Bulletins	Security Bulletin: IBM QRadar Data Synchronization App for IBM QRadar SIEM is vulnerable to using components with known vulnerabilities	31 May 202214:57	–	ibm
IBM Security Bulletins	Security Bulletin: WML CE: WML CE: SQLite through 3.32.0 has various security issues.	17 Jul 202022:52	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Data Risk Manager is affected by multiple vulnerabilities	2 Feb 202105:06	–	ibm
Tenable Nessus	Alibaba Cloud Linux 3 : 0111: sqlite (ALINUX3-SA-2022:0111)	14 May 202500:00	–	nessus
Tenable Nessus	Alibaba Cloud Linux 3 : 0121: mingw packages (ALINUX3-SA-2022:0121)	14 May 202500:00	–	nessus
Tenable Nessus	AlmaLinux 8 : sqlite (ALSA-2020:4442)	9 Feb 202200:00	–	nessus
Tenable Nessus	AlmaLinux 8 : mingw packages (ALSA-2021:1968)	9 Feb 202200:00	–	nessus
Tenable Nessus	CentOS 8 : sqlite (CESA-2020:4442)	1 Feb 202100:00	–	nessus
Tenable Nessus	CentOS 8 : mingw packages (CESA-2021:1968)	19 May 202100:00	–	nessus
Tenable Nessus	EulerOS Virtualization for ARM 64 3.0.6.0 : sqlite (EulerOS-SA-2020-1693)	25 Jun 202000:00	–	nessus

Source	Link
nvd	www.nvd.nist.gov/vuln/detail/CVE-2020-13630

21 Apr 2026 04:28Current

7.2High risk

Vulners AI Score7.2

CVSS 3.17

EPSS0.00122

ceph vulnerability use after free sqlite bug full text search snippet feature