Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/07/29 6:15 p.m.7 views

CVE-2025-7458

An integer overflow flaw has been discovered in SQLite. This flaw allows an attacker who has the ability to execute raw SQL statements to induce a denial of service or leak process memory. Mitigation Mitigation for this issue is either not available or the currently available options do not meet...

9.1CVSS7.3AI score0.0023EPSS
Exploits0References5
OSV
OSV
added 2025/07/29 1:15 p.m.5 views

CVE-2025-7458

An integer overflow in the sqlite3KeyInfoFromExprList function in SQLite versions 3.39.2 through 3.41.1 allows an attacker with the ability to execute arbitrary SQL statements to cause a denial of service or disclose sensitive information from process memory via a crafted SELECT statement with a...

9.1CVSS8.3AI score
Exploits0References2
OSV
OSV
added 2025/07/29 1:15 p.m.8 views

AZL-65990 CVE-2025-7458 affecting package sqlite for versions less than 3.39.2-4

An integer overflow in the sqlite3KeyInfoFromExprList function in SQLite versions 3.39.2 through 3.41.1 allows an attacker with the ability to execute arbitrary SQL statements to cause a denial of service or disclose sensitive information from process memory via a crafted SELECT statement with a...

9.1CVSS6AI score0.0023EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/07/29 12:43 p.m.11 views

CVE-2025-7458 SQLite integer overflow in key info allocation may lead to information disclosure.

An integer overflow in the sqlite3KeyInfoFromExprList function in SQLite versions 3.39.2 through 3.41.1 allows an attacker with the ability to execute arbitrary SQL statements to cause a denial of service or disclose sensitive information from process memory via a crafted SELECT statement with a...

6.9CVSS0.0023EPSS
Exploits0References2
CVE
CVE
added 2025/07/29 12:43 p.m.59 views

CVE-2025-7458

CVE-2025-7458 is confirmed in connected documents with concrete details: SQLite versions 3.39.2–3.41.1 contain an integer overflow in sqlite3KeyInfoFromExprList that can enable DoS or memory disclosure via a crafted ORDER BY with many expressions. IBM’s bulletin lists IBM Watson Cartridge impact ...

9.1CVSS7.7AI score0.0023EPSS
Exploits0References2Affected Software1
SQLite
SQLite
added 2025/01/01 12:0 a.m.9 views

SQLite report about CVE-2025-7458

An attacker who can inject arbitrary SQL statements into an application might be able to cause an integer overflow resulting in a read off the end of an array. Fixed on 2023-03-16...

9.1CVSS7.8AI score0.0023EPSS
Exploits0Affected Software1
Rows per page
Query Builder