9.8

CVE-2019-19646

pragma.c in SQLite through 3.30.1 mishandles NOT NULL in an integrity_check PRAGMA command in certain cases of generated columns.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
SqliteSqlite Version <= 3.30.1
TenableTenable.Sc Version < 5.19.0
OracleMysql Workbench Version <= 8.0.19
NetappCloud Backup Version-
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 5.23% 0.915
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 9.8 3.9 5.9
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov 7.5 10 6.4
AV:N/AC:L/Au:N/C:P/I:P/A:P
CWE-754 Improper Check for Unusual or Exceptional Conditions

The product does not check or incorrectly checks for unusual or exceptional conditions that are not expected to occur frequently during day to day operation of the product.

https://www.oracle.com/security-alerts/cpuapr2020.html
Patch
Third Party Advisory
https://www.tenable.com/security/tns-2021-14
Third Party Advisory
https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf
Patch
Third Party Advisory
https://security.netapp.com/advisory/ntap-20191223-0001/
Third Party Advisory
https://www.sqlite.org/
Vendor Advisory
https://github.com/sqlite/sqlite/commit/926f796e8feec15f3836aa0a060ed906f8ae04d3
Third Party Advisory
https://github.com/sqlite/sqlite/commit/ebd70eedd5d6e6a890a670b5ee874a5eae86b4dd
Patch
Third Party Advisory