CVE-2021-45346

Name of the Vulnerable Software and Affected Versions SQLite3 versions 3.35.1 through 3.37.0

Description A Memory Leak issue exists in SQLite Project via maliciously crafted SQL Queries, made by editing the Database File. It is possible to query a record and leak subsequent bytes of memory that extend beyond the record, which could let a malicious user obtain sensitive information. The developer disputes this as a vulnerability, stating that if a corrupted database file is given to SQLite and a query is submitted against the database, it might read parts of the database that were not intended or expected.

Recommendations For versions 3.35.1 through 3.37.0, at the moment, there is no information about a newer version that contains a fix for this issue.