SQLite before 3.8.9, as used in Android before 5.1.1 LMY48T, allows
attackers to gain privileges via a crafted application, aka internal bug
20099586.

Notes

Author	Note
sbeattie	all of CVE-2015-3414, CVE-2015-3415, CVE-2015-3416, upgrade to sqlite 3.8.9 in android

References

android-review.googlesource.com/#/c/145961/

groups.google.com/forum/#!topic/android-security-updates/iv1BF0f0XY4

launchpad.net/bugs/cve/CVE-2015-6607

nvd.nist.gov/vuln/detail/CVE-2015-6607

security-tracker.debian.org/tracker/CVE-2015-6607

www.cve.org/CVERecord?id=CVE-2015-6607

nessus 35

osv 2

centos 2

oraclelinux 2

kaspersky 1

openvas 23

debian 2

securityvulns 4

gentoo 1

freebsd 1

redhat 2

amazon 4

ubuntu 1

f5 4

openwrt 1

mageia 1

prion 4

cve 4

debiancve 3

ubuntucve 3

slackware 1

ibm 6

veracode 1

apple 4

suse 2

androidsecurity 1

oracle 1

nessus

CentOS 7 : sqlite (CESA-2015:1635)

2015-08-18 00:00:00

RHEL 7 : sqlite (RHSA-2015:1635)

2015-08-18 00:00:00

Amazon Linux AMI : sqlite (ALAS-2015-591)

2015-09-03 00:00:00

osv

sqlite3 - security update

2015-05-06 00:00:00

sqlite3 - security update

2015-05-06 00:00:00

centos

lemon, sqlite security update

2015-08-17 16:54:44

lemon, sqlite security update

2015-08-17 15:33:32

oraclelinux

sqlite security update

2015-08-17 00:00:00

sqlite security update

2015-08-17 00:00:00

kaspersky

KLA10565 Denial of service vulnerabilities in SQLite

2015-04-24 00:00:00

openvas

Debian Security Advisory DSA 3252-1 (sqlite3 - security update)

2015-05-06 00:00:00

Oracle: Security Advisory (ELSA-2015-1635)

2015-10-06 00:00:00

Debian: Security Advisory (DSA-3252-2)

2015-05-05 00:00:00

debian

[SECURITY] [DSA 3252-1] sqlite3 security update

2015-05-06 20:22:58

[SECURITY] [DSA 3252-2] sqlite3 security update

2015-06-14 15:09:43

securityvulns

[ MDVSA-2015:217 ] sqlite3

2015-05-05 00:00:00

SQLite multiple security vulnerabilities

2015-05-05 00:00:00

APPLE-SA-2015-09-30-3 OS X El Capitan 10.11

2015-10-05 00:00:00

gentoo

SQLite: Multiple vulnerabilities

2015-07-07 00:00:00

freebsd

sqlite -- multiple vulnerabilities

2015-04-14 00:00:00

redhat

(RHSA-2015:1635) Moderate: sqlite security update

2015-08-17 00:00:00

(RHSA-2015:1634) Moderate: sqlite security update

2015-08-17 00:00:00

amazon

Medium: sqlite

2015-09-02 12:00:00

Medium: php54

2015-07-07 12:39:00

Medium: php56

2015-07-07 12:40:00

ubuntu

SQLite vulnerabilities

2015-07-30 00:00:00

K37236006 : SQLite vulnerabilities CVE-2015-3414 and CVE-2015-3415

2016-06-07 00:00:00

SOL37236006 - SQLite vulnerabilities CVE-2015-3414 and CVE-2015-3415

2016-06-07 00:00:00

K16950 : SQLite vulnerability CVE-2015-3416

2015-07-10 00:00:00

openwrt

php: Security update (7 CVEs)

2016-01-28 12:23:45

mageia

Updated Firefox, Thunderbird & sqlite3 packages fix security vulnerabilities

2015-05-18 22:08:05

prion

Design/Logic Flaw

2015-10-06 17:59:00

Code injection

2015-04-24 17:59:00

Integer overflow

2015-04-24 17:59:00

cve

CVE-2015-6607

2015-10-06 17:59:00

CVE-2015-3415

2015-04-24 17:59:00

CVE-2015-3414

2015-04-24 17:59:00

debiancve

CVE-2015-3414

2015-04-24 17:59:00

CVE-2015-3415

2015-04-24 17:59:00

CVE-2015-3416

2015-04-24 17:59:00

ubuntucve

CVE-2015-3415

2015-04-24 00:00:00

CVE-2015-3414

2015-04-24 00:00:00

CVE-2015-3416

2015-04-24 00:00:00

slackware

[slackware-security] php

2015-07-17 20:25:21

ibm

Security Bulletin: A vulnerability in SQLite affects IBM Security Access Manager for Mobile (CVE-2015-3416)

2018-06-16 21:41:16

Security Bulletin: A vulnerability in SQLite affects IBM Security Network Protection (CVE-2015-3416)

2018-06-16 21:39:11

Security Bulletin: A vulnerability in SQLite affects IBM Security Access Manager for Web (CVE-2015-3416)

2018-06-16 21:41:16

veracode

Arbitrary Code Execution

2020-09-21 06:25:35

apple

About the security content of iTunes 12.6 - Apple Support

2017-03-22 07:40:40

About the security content of iTunes 12.6

2017-03-21 00:00:00

About the security content of iTunes 12.6 for Windows

2017-03-21 00:00:00

suse

Security update for sqlite3 (important)

2021-07-20 00:00:00

Security update for sqlite3 (important)

2021-07-14 00:00:00

androidsecurity

Nexus Security Bulletin - October 2015

2015-10-05 00:00:00

oracle

CPU July 2018

2018-07-17 00:00:00

Products

Security Intelligence
Non-intrusive assessment
Developers SDK
Windows scanner
Linux scanner
Perimeter control tool
MSSP

Database

Vulnerabilities
Exploits
IOC
Security News
BugBounty
Popular
Wild Exploited
Top Vulnerabilities

Tools

Linux Security Scanner
API integration
Subscriptions
Plugins
Manual Audit

Learn More

Stats
API
Docs
Api-keys
License
Pricing
Glossary
FAQ

Company

Blog
Contacts
About Us
OpenSource
EULA
Brand Guideline
Privacy Policy

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply. All product names, logos, and brands are property of their respective owners. All company, product and service names used in this website are for identification purposes only. Use of these names, logos, and brands does not imply endorsement.If you are an owner of some content and want it to be removed, please contact us. Using Vulners services you are accepting Vulners services end-user license agreement

@2024 Vulners Inc

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.004 Low

EPSS

Percentile

71.6%

JSON

Related for UB:CVE-2015-6607