Platform External Sqlite vulnerabilities
3 known vulnerabilities affecting platform/external_sqlite.
Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
UNKNOWN3
Vulnerabilities
Page 1 of 1
CVE-2020-13871UNKNOWN≥ 11:0, < 11:2021-11-012021-11-01
CVE-2020-13871 CVE-2020-13871: In resetAccumulator of select
In resetAccumulator of select.c, there is a possible use after free. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.
osv
CVE-2020-15358UNKNOWN≥ 12-next:0, < 12-next:2021-10-01≥ 11:0, < 11:2021-10-01+1 more2021-10-01
CVE-2020-15358 CVE-2020-15358: In sqlite3Select of select
In sqlite3Select of select.c, there is a possible out-of-bounds write due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.
osv
CVE-2021-0646UNKNOWN≥ 8.1:0, < 8.1:2021-08-01≥ 9:0, < 9:2021-08-01+2 more2021-08-01
CVE-2021-0646 CVE-2021-0646: In sqlite3_str_vappendf of sqlite3
In sqlite3_str_vappendf of sqlite3.c, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege if the user can also inject a printf into a privileged process's SQL with no additional execution privileges needed. User interaction is not needed for exploitation.
osv