Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

28 matches found

OSV
OSVadded 2020/11/26 5:15 p.m.0 views

UBUNTU-CVE-2020-27207

Zetetic SQLCipher 4.x before 4.4.1 has a use-after-free, related to sqlciphercodecpragma and sqlite3Strlen30 in sqlite3.c. A remote denial of service attack can be performed. For example, a SQL injection can be used to execute the crafted SQL command sequence. After that, some unexpected RAM data...

7.5CVSS7.3AI score0.00599EPSS
Exploits0References2
ATTACKERKB
ATTACKERKBadded 2020/11/26 5:15 p.m.1 views

CVE-2020-27207

Zetetic SQLCipher 4.x before 4.4.1 has a use-after-free, related to sqlciphercodecpragma and sqlite3Strlen30 in sqlite3.c. A remote denial of service attack can be performed. For example, a SQL injection can be used to execute the crafted SQL command sequence. After that, some unexpected RAM data...

7.5CVSS5.9AI score0.00599EPSS
Exploits0References4
Cvelist
Cvelistadded 2020/11/26 4:41 p.m.12 views

CVE-2020-27207

Zetetic SQLCipher 4.x before 4.4.1 has a use-after-free, related to sqlciphercodecpragma and sqlite3Strlen30 in sqlite3.c. A remote denial of service attack can be performed. For example, a SQL injection can be used to execute the crafted SQL command sequence. After that, some unexpected RAM data...

7.9AI score0.00599EPSS
Exploits0References3
CVE
CVEadded 2020/11/26 4:41 p.m.66 views

CVE-2020-27207

CVE-2020-27207 affects Zetetic SQLCipher 4.x prior to 4.4.1. The issue is a use-after-free in conjunction with sqlcipher_codec_pragma and sqlite3Strlen30 in sqlite3.c, enabling a remote denial-of-service via a crafted SQL command sequence. Affected component is the SQLCipher/SQLite codepath; impa...

7.5CVSS7.9AI score0.00599EPSS
Exploits0References3Affected Software1
CNNVD
CNNVDadded 2020/11/26 12:0 a.m.2 views

Zetetic Sqlcipher 资源管理错误漏洞

Zetetic Sqlcipher is a SqlLite-based database from Zetetic USA. The database provides a SqlLite-like access API while adding numerous security elements. A resource management error vulnerability exists in Zetetic SQLCipher versions 4.x through 4.4.1, which stems from sqlciphercodecpragma and...

7.5CVSS7.2AI score0.00599EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2020/11/07 12:0 a.m.3 views

PT-2020-16662 · Zetetic +1 · Sqlcipher +1

Name of the Vulnerable Software and Affected Versions: Zetetic SQLCipher versions 4.x before 4.4.1 Description: The issue is related to a use-after-free error, specifically involving sqlcipher codec pragma and sqlite3Strlen30 in sqlite3.c. This can lead to a remote denial of service attack. An...

7.5CVSS8.4AI score0.00603EPSS
Exploits1References15
myhack58
myhack58added 2015/09/27 12:0 a.m.231 views

Android sqlite load_extension vulnerability analysis-vulnerability warning-the black bar safety net

SQLite from 3. 3. 6 version http://www.sqlite.org/cgi/src/artifact/71405a8f9fedc0c2 start provides support for expansion of capacity, by sqliteloadextension API or loadextensionSQL statement, developers can not change the SQLite source code of the case, through the dynamic loading of libraries,...

1.2AI score
Exploits0
Packet Storm
Packet Stormadded 2014/01/14 12:0 a.m.47 views

Starbucks 2.6.1 Information Disclosure

Title: CVE-2014-0647 Insecure Data Storage of User Data Elements in Starbucks v2.6.1 iOS mobile application Published: January 13, 2014 Reported to Vendor: December 2013 no direct response CVE Reference: CVE-2014-0647 Credit: This issue was discovered by Daniel E. Wood...

2.1CVSS6.8AI score0.00079EPSS
Exploits1
Rows per page
Query Builder