Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sqlite sqlite 3.30.1 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2019-19959
ext/misc/zipfile.c in SQLite 3.30.1 mishandles certain uses of INSERT INTO in situations involving embedded '\0' characters in filenames, leading to a memory-management error that can be detected by (for example) valgrind.
Sqlite Sqlite 3.30.1
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 19.10
7.5
CVSSv3
CVE-2019-20218
selectExpander in select.c in SQLite 3.30.1 proceeds with WITH stack unwinding even after a parsing error.
Sqlite Sqlite 3.30.1
Debian Debian Linux 9.0
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 19.10
Canonical Ubuntu Linux 16.04
Oracle Mysql Workbench
7.5
CVSSv3
CVE-2019-19925
zipfileUpdate in ext/misc/zipfile.c in SQLite 3.30.1 mishandles a NULL pathname during an update of a ZIP archive.
Sqlite Sqlite 3.30.1
Siemens Sinec Infrastructure Network Services
Oracle Mysql Workbench
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Redhat Enterprise Linux Desktop 6.0
Redhat Enterprise Linux Server 6.0
Redhat Enterprise Linux Workstation 6.0
Suse Package Hub -
Opensuse Backports Sle 15.0
Opensuse Leap 15.1
Netapp Cloud Backup -
7.5
CVSSv3
CVE-2019-19923
flattenSubquery in select.c in SQLite 3.30.1 mishandles certain uses of SELECT DISTINCT involving a LEFT JOIN in which the right-hand side is a view. This can cause a NULL pointer dereference (or incorrect results).
Sqlite Sqlite 3.30.1
Siemens Sinec Infrastructure Network Services
Oracle Mysql Workbench
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Redhat Enterprise Linux Desktop 6.0
Redhat Enterprise Linux Server 6.0
Redhat Enterprise Linux Workstation 6.0
Suse Package Hub -
Opensuse Backports Sle 15.0
Opensuse Leap 15.1
Netapp Cloud Backup -
5.3
CVSSv3
CVE-2019-19924
SQLite 3.30.1 mishandles certain parser-tree rewriting, related to expr.c, vdbeaux.c, and window.c. This is caused by incorrect sqlite3WindowRewrite() error handling.
Sqlite Sqlite 3.30.1
Siemens Sinec Infrastructure Network Services
Apache Bookkeeper 4.12.1
Oracle Mysql Workbench
Netapp Cloud Backup -
1 Github repository
7.5
CVSSv3
CVE-2019-19926
multiSelect in select.c in SQLite 3.30.1 mishandles certain errors during parsing, as demonstrated by errors from sqlite3WindowRewrite() calls. NOTE: this vulnerability exists because of an incomplete fix for CVE-2019-19880.
Sqlite Sqlite 3.30.1
Siemens Sinec Infrastructure Network Services
Oracle Mysql Workbench
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Redhat Enterprise Linux Desktop 6.0
Redhat Enterprise Linux Server 6.0
Redhat Enterprise Linux Workstation 6.0
Opensuse Backports Sle 15.0
Opensuse Leap 15.1
Suse Package Hub -
Netapp Cloud Backup -
7.5
CVSSv3
CVE-2019-19880
exprListAppendList in window.c in SQLite 3.30.1 allows malicious users to trigger an invalid pointer dereference because constant integer values in ORDER BY clauses of window definitions are mishandled.
Sqlite Sqlite 3.30.1
Netapp Cloud Backup -
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Suse Package Hub -
Redhat Enterprise Linux Desktop 6.0
Redhat Enterprise Linux Server 6.0
Redhat Enterprise Linux Workstation 6.0
Opensuse Backports Sle 15.0
Opensuse Leap 15.1
Oracle Mysql Workbench
Siemens Sinec Infrastructure Network Services
7.5
CVSSv3
CVE-2019-19603
SQLite 3.30.1 mishandles certain SELECT statements with a nonexistent VIEW, leading to an application crash.
Sqlite Sqlite 3.30.1
Oracle Mysql Workbench
Siemens Sinec Infrastructure Network Services
Siemens Sinec Infrastructure Network Services 1.0.1.1
Apache Guacamole 1.3.0
Netapp Cloud Backup -
Netapp Ontap Select Deploy Administration Utility -
9.8
CVSSv3
CVE-2019-19646
pragma.c in SQLite up to and including 3.30.1 mishandles NOT NULL in an integrity_check PRAGMA command in certain cases of generated columns.
Sqlite Sqlite
Siemens Sinec Infrastructure Network Services
Tenable Tenable.sc
Oracle Mysql Workbench
Netapp Cloud Backup -
Netapp Ontap Select Deploy Administration Utility -
5.5
CVSSv3
CVE-2019-19645
alter.c in SQLite up to and including 3.30.1 allows malicious users to trigger infinite recursion via certain types of self-referential views in conjunction with ALTER TABLE statements.
Sqlite Sqlite
Netapp Cloud Backup -
Netapp Ontap Select Deploy Administration Utility -
Oracle Mysql Workbench
Tenable Tenable.sc
Siemens Sinec Infrastructure Network Services
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »