PT-2025-20471 · Unknown · Libsql-Sqlite3-Parser
Cxworks
·
Published
2025-05-09
·
Updated
2025-05-09
·
CVE-2025-47736
CVSS v3.1
2.9
Low
| Vector | AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L |
Name of the Vulnerable Software and Affected Versions
libsql-sqlite3-parser versions 0.13.0 and earlier
Description
The issue is related to the dialect/mod.rs file in the libsql-sqlite3-parser crate for Rust, which can crash if the input is not valid UTF-8.
Recommendations
For versions 0.13.0 and earlier, consider validating input data to ensure it is valid UTF-8 before processing it to prevent potential crashes. As a temporary workaround, consider implementing input validation checks to handle non-UTF-8 input gracefully until a patch is available.
Exploit
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Libsql-Sqlite3-Parser