sqlite security update

3.34.1-8 - Fixes CVE-2025-6965...

ALSA-2025:11803 Important: nodejs:22 security update

Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. Security Fixes: sqlite: Integer Truncation in SQLite CVE-2025-6965 For more details about the security issues, including the impact, a CVSS score, acknowledgments...

RHEL 9 : nodejs:22 (RHSA-2025:11802)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:11802 advisory. Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. Security Fixe...

ALSA-2025:11933 Important: sqlite security update

SQLite is a C library that implements an SQL database engine. A large subset of SQL92 is supported. A complete database is stored in a single disk file. The API is designed for convenience and ease of use. Applications that link against SQLite can enjoy the power and flexibility of an SQL databas...

Important: sqlite security update

SQLite is a C library that implements an SQL database engine. A large subset of SQL92 is supported. A complete database is stored in a single disk file. The API is designed for convenience and ease of use. Applications that link against SQLite can enjoy the power and flexibility of an SQL databas...

Important: sqlite security update

SQLite is a C library that implements an SQL database engine. A large subset of SQL92 is supported. A complete database is stored in a single disk file. The API is designed for convenience and ease of use. Applications that link against SQLite can enjoy the power and flexibility of an SQL databas...

Important: nodejs:22 security update

Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. Security Fixes: sqlite: Integer Truncation in SQLite CVE-2025-6965 For more details about the security issues, including the impact, a CVSS score, acknowledgments...

CVE-2025-54379 eKuiper API endpoints handling SQL queries with user-controlled table names.

LF Edge eKuiper is a lightweight IoT data analytics and stream processing engine running on resource-constraint edge devices. In versions before 2.2.1, there is a critical SQL Injection vulnerability in the getLast API functionality of the eKuiper project. This flaw allows unauthenticated remote...

FreeBSD : sqlite -- Integer Truncation on SQLite (0f5bcba2-67fb-11f0-9ee5-b42e991fc52e)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 0f5bcba2-67fb-11f0-9ee5-b42e991fc52e advisory. [email protected] reports: There exists a vulnerability in SQLite versions before 3.50.2 wher...

CVE-2025-4049

Use of hard-coded, the same among all vulnerable installations SQLite credentials vulnerability in SIGNUM-NET FARA allows to read and manipulate local-stored database.This issue affects FARA: through 5.0.80.34...

K000152672: SQLite vulnerabilities CVE-2024-0232 and CVE-2025-29088

Security Advisory Description CVE-2024-0232 A heap use-after-free issue has been identified in SQLite in the jsonParseAddNodeArray function in sqlite3.c. This flaw allows a local attacker to leverage a victim to pass specially crafted malicious input to the application, potentially causing a cras...

The vulnerability of the Aggregate Term Handler component in the SQLite database management system allows a attacker to compromise privacy, integrity, and accessibility.

The vulnerability of the Aggregate Term Handler component in the SQLite database management system is related to numerical truncation errors. Exploiting this vulnerability could allow an attacker to compromise privacy, integrity, and accessibility of the data...

CVE-2025-4049

Use of hard-coded, the same among all vulnerable installations SQLite credentials vulnerability in SIGNUM-NET FARA allows to read and manipulate local-stored database.This issue affects FARA: through 5.0.80.34...

CVE-2025-4049 Hardcoded SQLite password in FARA

Use of hard-coded, the same among all vulnerable installations SQLite credentials vulnerability in SIGNUM-NET FARA allows to read and manipulate local-stored database.This issue affects FARA: through 5.0.80.34...

CVE-2025-4049 Hardcoded SQLite password in FARA

Use of hard-coded, the same among all vulnerable installations SQLite credentials vulnerability in SIGNUM-NET FARA allows to read and manipulate local-stored database.This issue affects FARA: through 5.0.80.34...

CVE-2025-4049

CVE-2025-4049 affects SIGNUM-NET FARA (through v5.0.80.34). The vulnerability is due to hard-coded SQLite credentials, enabling unauthorized read and manipulation of the locally stored database. Impact includes high confidentiality, integrity, and availability on affected data when an attacker ca...

SQLite Operator-Based SQL Injection Vulnerability in LangGraph

This report is not public...

PT-2025-30241 · Unknown · Signum-Net Fara

Name of the Vulnerable Software and Affected Versions: SIGNUM-NET FARA versions through 5.0.80.34 Description: A hard-coded SQLite credential vulnerability exists in SIGNUM-NET FARA, allowing unauthorized read and manipulation of the locally stored database. Recommendations: Versions prior to...

SIGNUM-NET FARA 信任管理问题漏洞

SIGNUM-NET FARA is a facility management software from SIGNUM-NET Poland. A trust management issue vulnerability exists in SIGNUM-NET FARA version 5.0.80.34 and prior versions, which stems from the use of hard-coded SQLite credentials that could lead to reading and manipulating local databases...

CVE-2025-6230

A SQL injection vulnerability was reported in Lenovo Vantage that could allow a local attacker to modify the local SQLite database and execute limited SQLite commands...