Vulnerability Details CVE-2019-19317
lookupName in resolve.c in SQLite 3.30.1 omits bits from the colUsed bitmask in the case of a generated column, which allows attackers to cause a denial of service or possibly have unspecified other impact.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.022
EPSS Ranking 83.5%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
References
- https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf
- https://github.com/sqlite/sqlite/commit/522ebfa7cee96fb325a22ea3a2464a63485886a8
- https://github.com/sqlite/sqlite/commit/73bacb7f93eab9f4bd5a65cbc4ae242acf63c9e3
- https://security.netapp.com/advisory/ntap-20191223-0001/
- https://www.oracle.com/security-alerts/cpuapr2020.html
- https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf
- https://github.com/sqlite/sqlite/commit/522ebfa7cee96fb325a22ea3a2464a63485886a8
- https://github.com/sqlite/sqlite/commit/73bacb7f93eab9f4bd5a65cbc4ae242acf63c9e3
- https://security.netapp.com/advisory/ntap-20191223-0001/
- https://www.oracle.com/security-alerts/cpuapr2020.html
Products affected by CVE-2019-19317
-
cpe:2.3:a:netapp:cloud_backup:-
-
cpe:2.3:a:netapp:ontap_select_deploy_administration_utility:-
-
cpe:2.3:a:oracle:mysql_workbench:-
-
cpe:2.3:a:oracle:mysql_workbench:5.2.47
-
cpe:2.3:a:oracle:mysql_workbench:6.0.9
-
cpe:2.3:a:oracle:mysql_workbench:6.1.7
-
cpe:2.3:a:oracle:mysql_workbench:6.2.5
-
cpe:2.3:a:oracle:mysql_workbench:6.3.10
-
cpe:2.3:a:oracle:mysql_workbench:6.3.8
-
cpe:2.3:a:oracle:mysql_workbench:8.0.12
-
cpe:2.3:a:oracle:mysql_workbench:8.0.13
-
cpe:2.3:a:oracle:mysql_workbench:8.0.14
-
cpe:2.3:a:oracle:mysql_workbench:8.0.15
-
cpe:2.3:a:oracle:mysql_workbench:8.0.16
-
cpe:2.3:a:oracle:mysql_workbench:8.0.17
-
cpe:2.3:a:oracle:mysql_workbench:8.0.18
-
cpe:2.3:a:oracle:mysql_workbench:8.0.19
-
cpe:2.3:a:siemens:sinec_infrastructure_network_services:-
-
cpe:2.3:a:siemens:sinec_infrastructure_network_services:1.0.1
-
cpe:2.3:a:sqlite:sqlite:3.30.1