Lucene search
K

163 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2020/07/18 11:22 p.m.36 views

Security Bulletin: Infosphere BigInsights contains multiple vulnerabilities in which an ALTER TABLE statement may cause the Big SQL server to terminate abnormally. (CVE-2014-6159, CVE-2014-6209, CVE-2014-6210)

Summary InfoSphere BigInsights Big SQL contains a denial of service vulnerabilities in which an ALTER TABLE statement may cause the Big SQL server to terminate abnormally. The vulnerabilites exists in the IBM DB2 component included in BigInsights that is used by the Big SQL server. Vulnerability...

4CVSS0.6AI score0.0249EPSS
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/05/15 12:0 a.m.8 views

The vulnerability of the SQLite database management system’s ALTER TABLE instruction allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the SQLite database management system’s ALTER TABLE command lies in the use of memory after it is freed. Exploiting this vulnerability allows a remote attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

10CVSS6.9AI score0.07407EPSS
Exploits0References14Affected Software11
RedhatCVE
RedhatCVE
added 2020/04/15 2:3 p.m.46 views

CVE-2020-11656

In SQLite through 3.31.1, the ALTER TABLE implementation has a use-after-free, as demonstrated by an ORDER BY clause that belongs to a compound SELECT statement...

9.8CVSS7.3AI score0.07407EPSS
Exploits0References3
OSV
OSV
added 2020/04/09 3:15 a.m.2 views

DEBIAN-CVE-2020-11656

In SQLite through 3.31.1, the ALTER TABLE implementation has a use-after-free, as demonstrated by an ORDER BY clause that belongs to a compound SELECT statement...

9.8CVSS6.8AI score0.07407EPSS
Exploits0References1
NVD
NVD
added 2020/04/09 3:15 a.m.22 views

CVE-2020-11656

In SQLite through 3.31.1, the ALTER TABLE implementation has a use-after-free, as demonstrated by an ORDER BY clause that belongs to a compound SELECT statement...

9.8CVSS9.3AI score0.07407EPSS
Exploits0References11
OSV
OSV
added 2020/04/09 3:15 a.m.6 views

AZL-38947 CVE-2020-11656 affecting package ceph for versions less than 18.2.1-1

In SQLite through 3.31.1, the ALTER TABLE implementation has a use-after-free, as demonstrated by an ORDER BY clause that belongs to a compound SELECT statement...

9.8CVSS6.9AI score0.07407EPSS
Exploits0References1
OSV
OSV
added 2020/04/09 3:15 a.m.11 views

CVE-2020-11656

In SQLite through 3.31.1, the ALTER TABLE implementation has a use-after-free, as demonstrated by an ORDER BY clause that belongs to a compound SELECT statement...

9.8CVSS9.4AI score
Exploits0References11
Prion
Prion
added 2020/04/09 3:15 a.m.150 views

Design/Logic Flaw

In SQLite through 3.31.1, the ALTER TABLE implementation has a use-after-free, as demonstrated by an ORDER BY clause that belongs to a compound SELECT statement...

7.5CVSS7.9AI score0.07407EPSS
Exploits0References11Affected Software11
UbuntuCve
UbuntuCve
added 2020/04/09 3:15 a.m.41 views

CVE-2020-11656

In SQLite through 3.31.1, the ALTER TABLE implementation has a use-after-free, as demonstrated by an ORDER BY clause that belongs to a compound SELECT statement...

9.8CVSS6.8AI score0.07407EPSS
Exploits0References1
AlpineLinux
AlpineLinux
added 2020/04/09 3:15 a.m.29 views

CVE-2020-11656

In SQLite through 3.31.1, the ALTER TABLE implementation has a use-after-free, as demonstrated by an ORDER BY clause that belongs to a compound SELECT statement...

9.8CVSS2AI score0.07407EPSS
Exploits0
Cvelist
Cvelist
added 2020/04/09 2:49 a.m.23 views

CVE-2020-11656

In SQLite through 3.31.1, the ALTER TABLE implementation has a use-after-free, as demonstrated by an ORDER BY clause that belongs to a compound SELECT statement...

9.3AI score0.07407EPSS
Exploits0References11
CVE
CVE
added 2020/04/09 2:49 a.m.445 views

CVE-2020-11656

CVE-2020-11656 affects SQLite up to version 3.31.1, where the ALTER TABLE implementation has a use-after-free, demonstrated by an ORDER BY clause that belongs to a compound SELECT statement. Affected products/contexts in the linked documents consistently reference SQLite 3.31.1 or earlier. Some s...

9.8CVSS9.1AI score0.07407EPSS
Exploits0References11Affected Software1
Debian CVE
Debian CVE
added 2020/04/09 2:49 a.m.30 views

CVE-2020-11656

In SQLite through 3.31.1, the ALTER TABLE implementation has a use-after-free, as demonstrated by an ORDER BY clause that belongs to a compound SELECT statement...

9.8CVSS7.7AI score0.07407EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2020/04/09 12:0 a.m.12 views

PT-2020-2204 · Sqlite +3 · Sqlite +3

Name of the Vulnerable Software and Affected Versions: SQLite versions 3.31.1 and earlier Description: The issue is related to a use-after-free in the ALTER TABLE implementation, which can be demonstrated by an ORDER BY clause belonging to a compound SELECT statement. This could potentially allow...

10CVSS7AI score0.88077EPSS
Exploits28References507
CNVD
CNVD
added 2020/04/09 12:0 a.m.3 views

SQLite Resource Management Error Vulnerability

SQLite is the United States D. Richard Hipp software developers of a set of C-based open source embedded relational database management system. The system is characterized by independence, isolation, cross-platform and so on. A resource management error vulnerability exists in the ALTER TABLE...

9.8CVSS8.3AI score0.07407EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2020/02/23 12:0 a.m.4 views

PT-2022-6929

Name of the Vulnerable Software and Affected Versions: SQLite version 3.31.1 Description: The issue is caused by an out of bounds access problem through ALTER TABLE for views that have a nested FROM clause. This can be exploited by a remote attacker to execute arbitrary code. The problem is also...

9.8CVSS8.4AI score0.07407EPSS
Exploits2References60
RedhatCVE
RedhatCVE
added 2019/12/13 3:8 p.m.47 views

CVE-2019-19645

alter.c in SQLite through 3.30.1 allows attackers to trigger infinite recursion via certain types of self-referential views in conjunction with ALTER TABLE statements...

5.5CVSS5.3AI score0.00566EPSS
Exploits0References3
CNVD
CNVD
added 2019/12/10 12:0 a.m.5 views

SQLite Infinite Recursion Vulnerability

SQLite is a self-contained, serverless, zero-configuration, transactional SQL database engine. An infinite recursion vulnerability exists in alter.c in SQLite 3.30.1 and earlier versions, which can be exploited by an attacker to trigger infinite recursion via certain types of self-referencing vie...

5.5CVSS8.8AI score0.00566EPSS
Exploits0References1
OSV
OSV
added 2019/12/09 4:15 p.m.5 views

AZL-39010 CVE-2019-19645 affecting package ceph for versions less than 18.2.1-1

alter.c in SQLite through 3.30.1 allows attackers to trigger infinite recursion via certain types of self-referential views in conjunction with ALTER TABLE statements...

5.5CVSS6.5AI score0.00566EPSS
Exploits0References1
OSV
OSV
added 2019/12/09 4:15 p.m.2 views

DEBIAN-CVE-2019-19645

alter.c in SQLite through 3.30.1 allows attackers to trigger infinite recursion via certain types of self-referential views in conjunction with ALTER TABLE statements...

5.5CVSS6.9AI score0.00566EPSS
Exploits0References1
Rows per page
Query Builder