CVE-2020-24736

Опубликовано: 11 апр. 2023

Источник: redhat

CVSS3: 6.2

EPSS Низкий

Описание

Buffer Overflow vulnerability found in SQLite3 v.3.27.1 and before allows a local attacker to cause a denial of service via a crafted script.

A flaw was found in SQLite. A buffer overflow vulnerability allows a local attacker to cause a denial of service via a crafted script.

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux 6	sqlite	Out of support scope
Red Hat Enterprise Linux 7	sqlite	Out of support scope
Red Hat Enterprise Linux 9	sqlite	Not affected
Red Hat Enterprise Linux 8	sqlite	Fixed	RHSA-2023:3840	27.06.2023
Red Hat Enterprise Linux 8	sqlite	Fixed	RHSA-2023:3840	27.06.2023
Red Hat Enterprise Linux 8.6 Extended Update Support	sqlite	Fixed	RHSA-2024:0425	25.01.2024

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-400

https://bugzilla.redhat.com/show_bug.cgi?id=2186385sqlite: Crash due to misuse of window functions.

EPSS

Процентиль: 5%

0.00026

Низкий

6.2 Medium

CVSS3

Связанные уязвимости

CVE-2020-24736

CVSS3: 5.5

ubuntu

больше 2 лет назад

Buffer Overflow vulnerability found in SQLite3 v.3.27.1 and before allows a local attacker to cause a denial of service via a crafted script.

CVE-2020-24736

CVSS3: 5.5

nvd

больше 2 лет назад

Buffer Overflow vulnerability found in SQLite3 v.3.27.1 and before allows a local attacker to cause a denial of service via a crafted script.

CVE-2020-24736

CVSS3: 5.5

debian

больше 2 лет назад

Buffer Overflow vulnerability found in SQLite3 v.3.27.1 and before all ...

RLSA-2023:3840

rocky

почти 2 года назад

Moderate: sqlite security update

GHSA-p8qf-86fr-5x4q

CVSS3: 5.5

github

больше 2 лет назад

Buffer Overflow vulnerability found in SQLite3 v.3.27.1 and before allows a local attacker to cause a denial of service via a crafted script.

EPSS

Процентиль: 5%

0.00026

Низкий

6.2 Medium

CVSS3