Oracle » Communications Network Charging And Control » 6.0.1 : Security Vulnerabilities, CVEs, (Denial of service)
A flaw was found in SQLite's SELECT query functionality (src/select.c). This flaw allows an attacker who is capable of running SQL queries locally on the SQLite database to cause a denial of service or possible code execution by triggering a use-after-free. The highest threat from this vulnerability is to system availability.
Max CVSS
5.5
EPSS Score
0.07%
Published
2021-03-23
Updated
2022-11-16
SQLite through 3.31.1 allows attackers to cause a denial of service (segmentation fault) via a malformed window-function query because the AggInfo object's initialization is mishandled.
Max CVSS
7.5
EPSS Score
1.64%
Published
2020-04-09
Updated
2022-04-08
2 vulnerabilities found