Mysql Workbench@8.0.19 Security Vulnerabilities and Issues — Mysql Workbench@8.0.19 CVE List

Lucene search

OracleMysql Workbench8.0.19

13 matches found

CVE•added 2019/12/10 11:15 p.m.•544 views

CVE-2019-14889

A flaw was found with the libssh API function ssh_scp_new() in versions before 0.9.3 and before 0.8.8. When the libssh SCP client connects to a server, the scp command, which includes a user-provided path, is executed on the server-side. In case the library is used in a way where users can influenc...

9.3CVSS8AI score0.01601EPSS

CVE•added 2020/01/02 2:16 p.m.•377 views

CVE-2019-20218

selectExpander in select.c in SQLite 3.30.1 proceeds with WITH stack unwinding even after a parsing error.

7.5CVSS7.6AI score0.00802EPSS

CVE•added 2019/12/23 1:15 a.m.•277 views

CVE-2019-19926

multiSelect in select.c in SQLite 3.30.1 mishandles certain errors during parsing, as demonstrated by errors from sqlite3WindowRewrite() calls. NOTE: this vulnerability exists because of an incomplete fix for CVE-2019-19880.

7.5CVSS8.2AI score0.1124EPSS

CVE•added 2019/12/18 6:15 a.m.•275 views

CVE-2019-19880

exprListAppendList in window.c in SQLite 3.30.1 allows attackers to trigger an invalid pointer dereference because constant integer values in ORDER BY clauses of window definitions are mishandled.

7.5CVSS7.8AI score0.1124EPSS

CVE•added 2019/12/09 7:15 p.m.•252 views

CVE-2019-19603

SQLite 3.30.1 mishandles certain SELECT statements with a nonexistent VIEW, leading to an application crash.

7.5CVSS8.3AI score0.00645EPSS

CVE•added 2019/12/24 4:15 p.m.•241 views

CVE-2019-19923

flattenSubquery in select.c in SQLite 3.30.1 mishandles certain uses of SELECT DISTINCT involving a LEFT JOIN in which the right-hand side is a view. This can cause a NULL pointer dereference (or incorrect results).

7.5CVSS7.8AI score0.10516EPSS

CVE•added 2019/12/24 5:15 p.m.•229 views

CVE-2019-19925

zipfileUpdate in ext/misc/zipfile.c in SQLite 3.30.1 mishandles a NULL pathname during an update of a ZIP archive.

7.5CVSS7.8AI score0.09227EPSS

CVE•added 2019/11/25 8:15 p.m.•213 views

CVE-2019-19244

sqlite3Select in select.c in SQLite 3.30.1 allows a crash if a sub-select uses both DISTINCT and window functions, and also has certain ORDER BY usage.

7.5CVSS7.6AI score0.00256EPSS

CVE•added 2019/12/24 4:15 p.m.•209 views

CVE-2019-19924

SQLite 3.30.1 mishandles certain parser-tree rewriting, related to expr.c, vdbeaux.c, and window.c. This is caused by incorrect sqlite3WindowRewrite() error handling.

5.3CVSS6.9AI score0.10864EPSS

CVE•added 2019/12/09 4:15 p.m.•201 views

CVE-2019-19645

alter.c in SQLite through 3.30.1 allows attackers to trigger infinite recursion via certain types of self-referential views in conjunction with ALTER TABLE statements.

5.5CVSS7AI score0.00232EPSS

CVE•added 2019/12/09 7:15 p.m.•199 views

CVE-2019-19646

pragma.c in SQLite through 3.30.1 mishandles NOT NULL in an integrity_check PRAGMA command in certain cases of generated columns.

9.8CVSS9.3AI score0.2153EPSS

CVE•added 2019/12/05 2:15 p.m.•168 views

CVE-2019-19317

lookupName in resolve.c in SQLite 3.30.1 omits bits from the colUsed bitmask in the case of a generated column, which allows attackers to cause a denial of service or possibly have unspecified other impact.

9.8CVSS9.5AI score0.03556EPSS

CVE•added 2019/11/27 5:15 p.m.•143 views

CVE-2019-19242

SQLite 3.30.1 mishandles pExpr->y.pTab, as demonstrated by the TK_COLUMN case in sqlite3ExprCodeTarget in expr.c.

5.9CVSS6.7AI score0.00247EPSS