CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Tenable Nessus•added 2020/01/02 12:0 a.m.•42 views

EulerOS 2.0 SP8 : sqlite (EulerOS-SA-2020-1033)

According to the version of the sqlite packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - pragma.c in SQLite through 3.30.1 mishandles NOT NULL in an integritycheck PRAGMA command in certain cases of generated columns.CVE-2019-19646 Note...

9.8CVSS7.9AI score0.05376EPSS

Exploits0References2

SQLite•added 2020/01/01 12:0 a.m.•34 views

SQLite report about CVE-2020-13630

Malicious SQL statement causes a read-only use-after-free, possibly resulting in an incorrect output from the snippet SQL function of the FTS3 extension. There is no known way to exfiltrate data or crash the application using this bug. details...

7CVSS7.1AI score0.0103EPSS

SQLite•added 2020/01/01 12:0 a.m.•26 views

SQLite report about CVE-2020-13631

Malicious SQL statement an ALTER TABLE that tries to rename a virtual table into one of its own shadow tables causes an infinite loop and denial of service. details...

5.5CVSS7.2AI score0.0062EPSS

SQLite•added 2020/01/01 12:0 a.m.•30 views

SQLite report about CVE-2020-15358

Malicious SQL statement causes a read past the end of a heap buffer. details...

5.5CVSS7.4AI score0.01027EPSS

SQLite•added 2020/01/01 12:0 a.m.•40 views

SQLite report about CVE-2020-13632

Malicious SQL statement causes a read of a NULL pointer in the matchinfo SQL function of the FTS3 extension, resulting in denial of service. details...

5.5CVSS6.9AI score0.00571EPSS

SQLite•added 2020/01/01 12:0 a.m.•33 views

SQLite report about CVE-2020-13871

Malicious SQL statement causes a read-only use-after-free memory error. details...

7.5CVSS7.9AI score0.04447EPSS

SQLite•added 2020/01/01 12:0 a.m.•47 views

SQLite report about CVE-2020-13435

Malicious SQL statement causes a read access to a NULL pointer and denial of service. details...

5.5CVSS7.1AI score0.0064EPSS

SQLite•added 2020/01/01 12:0 a.m.•51 views

SQLite report about CVE-2020-13434

Malicious SQL statement involving the printf SQL function results in an integer overflow which can overwrite the stack with over 2 billion bytes of 0x30 or 0x20 ASCII '0' or ' '. Even though this is a stack overwrite, there is no known way to redirect control or otherwise escalate the level of...

5.5CVSS7.2AI score0.01013EPSS

SQLite•added 2020/01/01 12:0 a.m.•31 views

SQLite report about CVE-2020-9327

Malicious SQL statement causes a read using an uninitialized pointer and denial-of-service details...

7.5CVSS8.3AI score0.03683EPSS

SQLite•added 2020/01/01 12:0 a.m.•38 views

SQLite report about CVE-2020-11656

Malicious SQL statement causes read-only use-after-free of memory allocation if SQLite is compile with -DSQLITEDEBUG. Does not affect release builds. details...

9.8CVSS7.9AI score0.07407EPSS

SQLite•added 2020/01/01 12:0 a.m.•39 views

SQLite report about CVE-2020-6405

Malicious SQL statement causes a NULL pointer dereference and denial-of-service details...

6.5CVSS7.8AI score0.02561EPSS

RedhatCVE•added 2019/12/30 2:8 p.m.•34 views

CVE-2019-19880

exprListAppendList in window.c in SQLite 3.30.1 allows attackers to trigger an invalid pointer dereference because constant integer values in ORDER BY clauses of window definitions are mishandled...

7.5CVSS5AI score0.06937EPSS

Exploits0References3

RedhatCVE•added 2019/12/27 5:8 p.m.•37 views

CVE-2019-19646

pragma.c in SQLite through 3.30.1 mishandles NOT NULL in an integritycheck PRAGMA command in certain cases of generated columns...

9.8CVSS1.7AI score0.05376EPSS

Exploits0References3

ThreatPost•added 2019/12/27 4:45 p.m.•179 views

Google Chrome Affected By Magellan 2.0 Flaws

Researchers have disclosed five recently-patched vulnerabilities in the Google Chrome browser that could be exploited by an attacker to remotely execute code. The vulnerabilities, dubbed Magellan 2.0 by the Tencent Blade team of researchers who discovered them, exist in the SQLite database...

6.8CVSS8.2AI score0.26869EPSS

Exploits2References13

Kaspersky•added 2019/12/27 12:0 a.m.•54 views

KLA11718 Multiple vulnerabilities in Opera

Multiple vulnerabilities were found in Opera. Malicious users can exploit these vulnerabilities to execute arbitrary code, bypass security restrictions, cause denial of service, obtain sensitive information, spoof user interface. Below is a complete list of vulnerabilities: 1. Use after free...

8.8CVSS9.5AI score0.06432EPSS

Exploits5References4

CNVD•added 2019/12/26 12:0 a.m.•0 views

SQLite Code Issue Vulnerability

SQLite is the United States D. Richard Hipp software developers of a set of C-based open source embedded relational database management system. The system is characterized by independence, isolation, cross-platform and so on. SQLite 3.30.1 version of the select.c file of the flattenSubquery there...

7.5CVSS8.7AI score0.0681EPSS

CNVD•added 2019/12/25 12:0 a.m.•2 views

SQLite Code Issue Vulnerability (CNVD-2020-22686)

SQLite is the United States D. Richard Hipp software developers of a set of C-based open source embedded relational database management system. The system is characterized by independence, isolation, cross-platform and so on. A security vulnerability exists in zipfileUpdate in the...

7.5CVSS8.7AI score0.0681EPSS

CNVD•added 2019/12/25 12:0 a.m.•3 views

SQLite Input Validation Error Vulnerability

SQLite is the United States D. Richard Hipp software developers of a set of C-based open source embedded relational database management system. The system is characterized by independence, isolation, cross-platform and so on. An input validation error vulnerability exists in multiSelect in the...

9.8CVSS8.8AI score0.04276EPSS