A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, watchOS 5.2.1, iTunes for Windows 12.9.5, iCloud for Windows 7.12. A maliciously crafted SQL query may lead to arbitrary code execution.
Max CVSS
9.8
EPSS Score
1.43%
Published
2019-12-18
Updated
2020-08-24
SQLite 3.25.2, when queries are run on a table with a malformed PRIMARY KEY, allows remote attackers to cause a denial of service (application crash) by leveraging the ability to run arbitrary SQL statements (such as in certain WebSQL use cases).
Max CVSS
7.5
EPSS Score
3.88%
Published
2019-04-03
Updated
2019-06-19
2 vulnerabilities found