multiSelect in select.c in SQLite 3.30.1 mishandles certain errors during parsing, as demonstrated by errors from sqlite3WindowRewrite() calls. NOTE: this vulnerability exists because of an incomplete fix for CVE-2019-19880.

References

bugzilla.redhat.com/show_bug.cgi?id=1789364

nvd.nist.gov/vuln/detail/CVE-2019-19926

www.cve.org/CVERecord?id=CVE-2019-19926

osv 3

alpinelinux 2

ubuntucve 2

cve 2

debiancve 2

prion 2

nessus 25

openvas 22

redhatcve 1

symantec 2

sqlite 1

ibm 5

cloudfoundry 1

ubuntu 2

rosalinux 1

photon 12

suse 5

mageia 2

archlinux 1

redhat 1

chrome 1

kaspersky 2

debian 1

ics 2

tenable 1

mscve 1

oracle 1

osv

CVE-2019-19926

2019-12-23 01:15:13

CVE-2019-19880

2019-12-18 06:15:12

chromium - security update

2020-03-10 00:00:00

alpinelinux

CVE-2019-19926

2019-12-23 01:15:00

CVE-2019-19880

2019-12-18 06:15:00

ubuntucve

CVE-2019-19926

2019-12-23 00:00:00

CVE-2019-19880

2019-12-18 00:00:00

cve

CVE-2019-19926

2019-12-23 01:15:00

CVE-2019-19880

2019-12-18 06:15:00

debiancve

CVE-2019-19926

2019-12-23 01:15:00

CVE-2019-19880

2019-12-18 06:15:00

prion

Code injection

2019-12-23 01:15:00

Input validation

2019-12-18 06:15:00

nessus

EulerOS Virtualization for ARM 64 3.0.2.0 : sqlite (EulerOS-SA-2020-1562)

2020-05-01 00:00:00

EulerOS 2.0 SP5 : sqlite (EulerOS-SA-2020-1132)

2020-02-24 00:00:00

EulerOS Virtualization 3.0.6.0 : sqlite (EulerOS-SA-2020-1764)

2020-07-01 00:00:00

openvas

Huawei EulerOS: Security Advisory for sqlite (EulerOS-SA-2020-1132)

2020-02-24 00:00:00

Huawei EulerOS: Security Advisory for sqlite (EulerOS-SA-2020-1562)

2020-04-30 00:00:00

Huawei EulerOS: Security Advisory for sqlite (EulerOS-SA-2020-1764)

2020-07-03 00:00:00

redhatcve

CVE-2019-19880

2019-12-30 14:08:55

symantec

SQLite CVE-2019-19926 Incomplete Fix Denial of Service Vulnerability

2019-12-22 00:00:00

SQLite CVE-2019-19880 Denial of Service Vulnerability

2019-12-18 00:00:00

sqlite

SQLite report about CVE-2019-19926

2019-01-01 00:00:00

ibm

Security Bulletin: A security vulnerability has been identified in the sqlite package shipped with IBM Watson Machine Learning Community Edition (WMLCE)

2020-05-20 00:26:41

Security Bulletin: A vulnerability in SQLite affects IBM Cloud Application Performance Management Response Time Monitoring Agent (CVE-2019-19925, CVE-2019-19645, CVE-2019-19924, CVE-2019-19923, CVE-2019-19880, CVE-2019-19646, CVE-2019-19926)

2020-04-07 13:33:23

Security Bulletin: IBM Security Guardium is affected by an SQLite vulnerability

2020-10-09 16:44:28

cloudfoundry

USN-4298-1: SQLite vulnerabilities | Cloud Foundry

2020-03-31 00:00:00

ubuntu

SQLite vulnerabilities

2020-03-10 00:00:00

SQLite vulnerabilities

2020-08-03 00:00:00

rosalinux

Advisory ROSA-SA-2023-2149

2023-04-11 13:56:14

photon

Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2020-1.0-0270

2020-02-05 00:00:00

Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2020-2.0-0200

2020-01-14 00:00:00

Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2020-2.0-0204

2020-02-05 00:00:00

suse

Security update for sqlite3 (important)

2021-07-14 00:00:00

Security update for sqlite3 (important)

2021-07-20 00:00:00

Security update for chromium (important)

2020-02-12 00:00:00

mageia

Updated sqlite3 packages fix security vulnerabilities

2020-01-30 21:28:34

Updated chromium-browser-stable packages fix security vulnerabilities

2020-03-06 19:13:58

archlinux

[ASA-202002-3] chromium: multiple issues

2020-02-06 00:00:00

redhat

(RHSA-2020:0514) Important: chromium-browser security update

2020-02-17 08:02:41

chrome

Stable Channel Update for Desktop

2020-02-04 00:00:00

kaspersky

KLA11660 Multiple vulnerabilities in Google Chrome

2020-02-04 00:00:00

KLA11721 Multiple vulnerabilities in Opera

2020-02-14 00:00:00

debian

[SECURITY] [DSA 4638-1] chromium security update

2020-03-11 00:54:05

ics

Siemens SINEC INS

2022-03-10 12:00:00

Siemens SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP V3.1

2023-12-14 12:00:00

tenable

[R1] Nessus Network Monitor 6.2.2 Fixes Multiple Vulnerabilities

2023-06-29 10:45:47

mscve

Chromium Security Updates for Microsoft Edge (Chromium-Based)

2020-01-28 08:00:00

oracle

Oracle Critical Patch Update Advisory - April 2020

2020-04-14 00:00:00

Products

Security Intelligence
Non-intrusive assessment
Developers SDK
Windows scanner
Linux scanner
Perimeter control tool
MSSP

Database

Vulnerabilities
Exploits
IOC
Security News
BugBounty
Popular
Wild Exploited
Top Vulnerabilities

Tools

Linux Security Scanner
API integration
Subscriptions
Plugins
Manual Audit

Learn More

Stats
API
Docs
Api-keys
License
Pricing
Glossary
FAQ

Company

Blog
Contacts
About Us
OpenSource
EULA
Brand Guideline
Privacy Policy

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply. All product names, logos, and brands are property of their respective owners. All company, product and service names used in this website are for identification purposes only. Use of these names, logos, and brands does not imply endorsement.If you are an owner of some content and want it to be removed, please contact us. Using Vulners services you are accepting Vulners services end-user license agreement

@2024 Vulners Inc

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.014 Low

EPSS

Percentile

86.1%

JSON

Related for RH:CVE-2019-19926