PT-2025-29558 · Sqlite+14 · Sqlite+14
Vlad Stolyarov
·
Published
2025-07-15
·
Updated
2026-04-22
·
CVE-2025-6965
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Vulnerability Summary
Name of the Vulnerable Software and Affected Versions: SQLite versions prior to 3.50.2
Description
SQLite versions before 3.50.2 are vulnerable to a memory corruption issue due to an integer overflow that can occur when the number of aggregate terms exceeds the number of available columns. This vulnerability (CVE-2025-6965) was proactively identified by Google’s AI agent, “Big Sleep,” before public disclosure and exploitation. This marks a significant advancement in AI-driven cybersecurity, demonstrating the potential for AI to detect and mitigate vulnerabilities before they are exploited by attackers.
Recommendations
Upgrade to SQLite version 3.50.2 or later to address this vulnerability.
Exploit
Fix
LPE
DoS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Alt Linux
Almalinux
Astra Linux
Centos
Debian
Ibm Aix
Linuxmint
Apple Macos
Mysql Server
Red Hat
Red Os
Rocky Linux
Sqlite
Suse
Ubuntu