CVE-2021-20227

CVSS v2.0

6.1

Medium

Vector

AV:L/AC:L/Au:N/C:P/I:P/A:C

Name of the Vulnerable Software and Affected Versions SQLite (affected versions not specified)

Description A flaw was found in SQLite's SELECT query functionality, specifically in the src/select.c file. This issue allows an attacker capable of running SQL queries locally on the SQLite database to cause a denial of service or possible code execution by triggering a use-after-free. The highest threat from this vulnerability is to system availability.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

DoS

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

ALT-PU-2021-1135

ALT-PU-2021-3336

BDU:2021-01135

BIT-SQLITE-2021-20227

CVE-2021-20227

OESA-2021-1252

Affected Products

Alt Linux

Astra Linux

Sqlite

Ubuntu

CVE-2021-20227

Weakness Enumeration

Related Identifiers

Affected Products

References · 24