Description

lookupName in resolve.c in SQLite 3.30.1 omits bits from the colUsed bitmask in the case of a generated column, which allows attackers to cause a denial of service or possibly have unspecified other impact.

Remediation

References

CVE-2019-19317

Related Vulnerabilities

Joomla Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2018-11322)

WordPress Plugin Widget Logic Cross-Site Request Forgery (5.10.2)

WordPress Plugin ShareThis Dashboard for Google Analytics Cross-Site Scripting (2.5.1)

IBM WebSEAL Insufficiently Protected Credentials Vulnerability (CVE-2021-20439)

TYPO3 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2011-4626)

Severity

Critical

Classification

CVE-2019-19317 CWE-681 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities