Published: 09/09/2019 Updated: 07/11/2023

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

CVSS v3 Base Score: 6.5 | Impact Score: 3.6 | Exploitability Score: 2.8

VMScore: 384

Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P

In SQLite up to and including 3.29.0, whereLoopAddBtreeIndex in sqlite3.c can crash a browser or other application because of missing validation of a sqlite_stat1 sz field, aka a "severe division by zero in the query planner."

Vulnerable Product	Search on Vulmon	Subscribe to Product
sqlite sqlite
netapp steelstore cloud integrated storage -
netapp oncommand workflow automation -
netapp oncommand insight -
netapp ontap select deploy administration utility -
netapp active iq unified manager
netapp santricity unified manager -
netapp e-series santricity os controller
canonical ubuntu linux 16.04
canonical ubuntu linux 18.04
canonical ubuntu linux 19.04
canonical ubuntu linux 19.10
canonical ubuntu linux 12.04
fedoraproject fedora 30
debian debian linux 9.0
tenable nessus agent
oracle solaris 11
oracle outside in technology 8.5.4
oracle mysql
oracle jre 1.8.0
oracle jdk 1.8.0
oracle zfs storage appliance 8.8
oracle communications design studio 7.3.4.3.0
oracle communications design studio 7.3.5.5.0
oracle communications design studio 7.4.0.4.0
mcafee policy auditor

Several security issues were fixed in SQLite ...

Synopsis Moderate: Release of OpenShift Serverless 1110 Type/Severity Security Advisory: Moderate Topic Release of OpenShift Serverless 1110 Description Red Hat OpenShift Serverless 1110 is a generally available release of theOpenShift Serverless Operator This version of the OpenShif ...

Synopsis Moderate: OpenShift Container Platform 46 compliance-operator security and bug fix update Type/Severity Security Advisory: Moderate Topic An update for compliance-content-container, ose-compliance-openscap-container, ose-compliance-operator-container, and ose-compliance-operator-metadata-container ...

Synopsis Moderate: Release of OpenShift Serverless 1120 Type/Severity Security Advisory: Moderate Topic Release of OpenShift Serverless 1120Red Hat Product Security has rated this update as having a security impactof Moderate A Common Vulnerability Scoring System (CVSS) base score,which gives a detaile ...

Synopsis Moderate: Red Hat Quay v333 bug fix and security update Type/Severity Security Advisory: Moderate Topic Red Hat Quay v333 is now available with bug fixes and security updatesRed Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring S ...

Synopsis Moderate: sqlite security update Type/Severity Security Advisory: Moderate Topic An update for sqlite is now available for Red Hat Enterprise Linux 8Red Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring System (CVSS) base score, whic ...

Synopsis Moderate: Red Hat OpenShift Container Storage 460 security, bug fix, enhancement update Type/Severity Security Advisory: Moderate Topic Updated images are now available for Red Hat OpenShift Container Storage 460 on Red Hat Enterprise Linux 8Red Hat Product Security has rated this update as ha ...

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Security) Supported versions that are affected are Java SE: 7u241, 8u231, 1105 and 1301; Java SE Embedded: 8u231 Difficult to exploit vulnerability allows unauthenticated attacker with network access via Kerberos to compromise Java SE, Java SE Embedded Succe ...

Multiple vulnerabilities have been found in Hitachi Command Suite, Hitachi Automation Director, Hitachi Configuration Manager, Hitachi Infrastructure Analytics Advisor and Hitachi Ops Center CVE-2019-13117, CVE-2019-13118, CVE-2019-16168, CVE-2020-2583, CVE-2020-2585, CVE-2020-2590, CVE-2020-2593, CVE-2020-2601, CVE-2020-2604, CVE-2020-2654, CVE ...

Nessus versions 8140 and earlier for Windows were found to contain multiple local privilege escalation vulnerabilities which could allow an authenticated, local administrator to run specific Windows executables as the Nessus host Additionally, two third-party components (expat, sqlite) were found to contain vulnerabilities, and updated versions ...

Tenablesc leverages third-party software to help provide underlying functionality Multiple third-party components were found to contain vulnerabilities, and updated versions have been made available by the providers Out of caution, and in line with best practice, Tenable has upgraded the bundled components to address the potential impact of the ...

Critical Infrastructure Sectors: Critical Manufacturing

CWE-369 https://www.sqlite.org/src/timeline?c=98357d8c1263920b https://www.sqlite.org/src/info/e4598ecbdd18bd82945f6029013296690e719a62 https://security.netapp.com/advisory/ntap-20190926-0003/http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00033.html http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00032.html https://usn.ubuntu.com/4205-1/https://www.oracle.com/security-alerts/cpujan2020.html https://security.netapp.com/advisory/ntap-20200122-0003/https://security.gentoo.org/glsa/202003-16 https://www.oracle.com/security-alerts/cpuapr2020.html https://lists.debian.org/debian-lts-announce/2020/08/msg00037.html https://www.tenable.com/security/tns-2021-08 https://www.tenable.com/security/tns-2021-11 https://www.tenable.com/security/tns-2021-14 https://kc.mcafee.com/corporate/index?page=content&id=SB10365 https://www.mail-archive.com/sqlite-users%40mailinglists.sqlite.org/msg116312.html https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XZARJHJJDBHI7CE5PZEBXS5HKK6HXKW2/https://nvd.nist.gov https://usn.ubuntu.com/4205-1/https://www.cisa.gov/news-events/ics-advisories/icsa-23-348-10

Get Started

CVE-2019-16168

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

ICS Advisories

References

Vulmon Search

About

Products

Connect