4904 matches found
EUVD-2025-179877
Malicious code in carpo-aurora-pegasus-sqlite npm...
Malicious code in umbriel-gulp-sqlite-shelljs (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a191c64e27e6c7846f4fb786da99ba6ab75ab274a4df6b2b6334a001d7cd9cbd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-175689
Malicious code in vortex-husky-sqlite-exobiology npm...
Malicious code in sqlite-oauth-quito-graphql (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 07ca71d4114f8ae4468c127def1828c69d2b57565bf13761cb5938f72ffc59da This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-177086
Malicious code in postgres-on-sqlite-archaeogenetics npm...
EUVD-2025-176239
Malicious code in sqlite-telesto-commitlint-figures npm...
EUVD-2025-177032
Malicious code in procyon-futurology-concurrently-sqlite npm...
EUVD-2025-179713
Malicious code in cli-protractor-sqlite-library npm...
MAL-2025-188067 Malicious code in miranda-despina-sqlite-ultra (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 878e603c295849975d59f748701398821459653943002d7433907fc9b3f73aad This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-187416 Malicious code in hyperion-prettier-stylelint-sqlite-rehype (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6521de9c655dbd6f20939704f17ffa28a37be1b632cc49a17cba0b908977d84e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Siemens SIMATIC S7-1500 NULL Pointer Dereference (CVE-2019-19923)
flattenSubquery in select.c in SQLite 3.30.1 mishandles certain uses of SELECT DISTINCT involving a LEFT JOIN in which the right-hand side is a view. This can cause a NULL pointer dereference or incorrect results. This plugin only works with Tenable.ot. Please visit...
Siemens SIMATIC S7-1500 Integer Overflow or Wraparound (CVE-2025-29088)
A vulnerability in sqlite allows an attacker to cause a denial of service via the SQLITEDBCONFIGLOOKASIDE component. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if...
Siemens SIMATIC S7-1500 Use After Free (CVE-2020-13871)
SQLite 3.32.2 has a use-after-free in resetAccumulator in select.c because the parse tree rewrite for window functions is too late. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc...
Siemens SIMATIC S7-1500 Use After Free (CVE-2020-11656)
In SQLite through 3.31.1, the ALTER TABLE implementation has a use- after-free, as demonstrated by an ORDER BY clause that belongs to a compound SELECT statement. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL...
Siemens SIMATIC S7-1500 NULL Pointer Dereference (CVE-2020-9327)
In SQLite 3.31.1, isAuxiliaryVtabOperator allows attackers to trigger a NULL pointer dereference and segmentation fault because of generated column optimizations. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL...
Siemens SIMATIC S7-1500 Use After Free (CVE-2021-20227)
A flaw was found in SQLite's SELECT query functionality src/select.c. This flaw allows an attacker who is capable of running SQL queries locally on the SQLite database to cause a denial of service or possible code execution by triggering a use-after-free. The highest threat from this vulnerabilit...
Siemens SIMATIC S7-1500 Improper Initialization (CVE-2020-11655)
SQLite through 3.31.1 allows attackers to cause a denial of service segmentation fault via a malformed window-function query because the AggInfo object's initialization is mishandled. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more...
Siemens SIMATIC S7-1500 Improper Handling of Exceptional Conditions (CVE-2019-19924)
SQLite 3.30.1 mishandles certain parser-tree rewriting, related to expr.c, vdbeaux.c, and window.c. This is caused by incorrect sqlite3WindowRewrite error handling. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL...
Siemens SIMATIC S7-1500 Out-of-bounds Write (CVE-2020-15358)
In SQLite before 3.32.3, select.c mishandles query-flattener optimization, leading to a multiSelectOrderBy heap overflow because of misuse of transitive properties for constant propagation. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more...
Siemens SIMATIC S7-1500 NULL Pointer Dereference (CVE-2020-13435)
SQLite through 3.32.0 has a segmentation fault in sqlite3ExprCodeTarget in expr.c. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid504279;...