~/cve/CVE-2019-19603

pipeline liveDigest Docs

CVE-2019-19603

published 2019-12-09

CVE-2019-19603: SQLite 3.30.1 mishandles certain SELECT statements with a nonexistent VIEW, leading to an application crash.

high7.5CVSS 3.1

AVNACLPRNUINSUCNINAH

SQLite 3.30.1 mishandles certain SELECT statements with a nonexistent VIEW, leading to an application crash.

Affected

14 ranges

Vendor	Product	Version range	Fixed in
apache	guacamole	—	—
debian	sqlite3	< sqlite3 3.30.1+fossil191229-1 (bookworm)	sqlite3 3.30.1+fossil191229-1 (bookworm)
ghost	sqlite3	>= 0 < 3.30.1+fossil191229-1	3.30.1+fossil191229-1
ghost	sqlite3	>= 0 < 3.30.1+fossil191229-1	3.30.1+fossil191229-1
ghost	sqlite3	>= 0 < 3.30.1+fossil191229-1	3.30.1+fossil191229-1
ghost	sqlite3	>= 0 < 3.30.1+fossil191229-1	3.30.1+fossil191229-1
ghost	sqlite3	>= 0 < 3.11.0-1ubuntu1.5	3.11.0-1ubuntu1.5
ghost	sqlite3	>= 0 < 3.22.0-1ubuntu0.4	3.22.0-1ubuntu0.4
ghost	sqlite3	>= 0 < 3.31.1-4ubuntu0.1	3.31.1-4ubuntu0.1
oracle	mysql_workbench	<= 8.0.19	—
paloalto	pan-os	—	—
siemens	sinec_infrastructure_network_services	< 1.0.1.1	1.0.1.1
siemens	sinec_infrastructure_network_services	—	—
sqlite	sqlite	—	—

CVSS provenance

nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

osv7.5HIGH