Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2021-20227

Опубликовано: 23 мар. 2021
Источник: nvd
CVSS3: 5.5
CVSS2: 2.1
EPSS Низкий

Описание

A flaw was found in SQLite's SELECT query functionality (src/select.c). This flaw allows an attacker who is capable of running SQL queries locally on the SQLite database to cause a denial of service or possible code execution by triggering a use-after-free. The highest threat from this vulnerability is to system availability.

Ссылки

Уязвимые конфигурации

Конфигурация 1
cpe:2.3:a:sqlite:sqlite:*:*:*:*:*:*:*:*
Версия от 3.33.0 (включая) до 3.34.1 (исключая)
Конфигурация 2

Одно из

cpe:2.3:a:oracle:communications_network_charging_and_control:*:*:*:*:*:*:*:*
Версия от 12.0.1.0 (включая) до 12.0.4.0.0 (включая)
cpe:2.3:a:oracle:communications_network_charging_and_control:6.0.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:enterprise_manager_for_oracle_database:13.4.0.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:jd_edwards_enterpriseone_tools:*:*:*:*:*:*:*:*
Версия до 9.2.6.0 (исключая)
cpe:2.3:a:oracle:mysql_workbench:*:*:*:*:*:*:*:*
Версия до 8.0.26 (включая)
cpe:2.3:a:oracle:outside_in_technology:8.5.5:*:*:*:*:*:*:*
cpe:2.3:a:oracle:zfs_storage_appliance_kit:8.8:*:*:*:*:*:*:*

EPSS

Процентиль: 22%
0.00072
Низкий

5.5 Medium

CVSS3

2.1 Low

CVSS2

Дефекты

CWE-416
CWE-416

Связанные уязвимости

ubuntu логотип

CVE-2021-20227

CVSS3: 5.5
ubuntu
почти 5 лет назад

A flaw was found in SQLite's SELECT query functionality (src/select.c). This flaw allows an attacker who is capable of running SQL queries locally on the SQLite database to cause a denial of service or possible code execution by triggering a use-after-free. The highest threat from this vulnerability is to system availability.

redhat логотип

CVE-2021-20227

CVSS3: 6.1
redhat
около 5 лет назад

A flaw was found in SQLite's SELECT query functionality (src/select.c). This flaw allows an attacker who is capable of running SQL queries locally on the SQLite database to cause a denial of service or possible code execution by triggering a use-after-free. The highest threat from this vulnerability is to system availability.

msrc логотип

CVE-2021-20227

CVSS3: 5.5
msrc
почти 5 лет назад

A flaw was found in SQLite's SELECT query functionality (src/select.c). This flaw allows an attacker who is capable of running SQL queries locally on the SQLite database to cause a denial of service or possible code execution by triggering a use-after-free. The highest threat from this vulnerability is to system availability.

debian логотип

CVE-2021-20227

CVSS3: 5.5
debian
почти 5 лет назад

A flaw was found in SQLite's SELECT query functionality (src/select.c) ...

github логотип

GHSA-w586-cvch-p9ch

CVSS3: 5.5
github
больше 3 лет назад

A flaw was found in SQLite's SELECT query functionality (src/select.c). This flaw allows an attacker who is capable of running SQL queries locally on the SQLite database to cause a denial of service or possible code execution by triggering a use-after-free. The highest threat from this vulnerability is to system availability.

EPSS

Процентиль: 22%
0.00072
Низкий

5.5 Medium

CVSS3

2.1 Low

CVSS2

Дефекты

CWE-416
CWE-416