Description

multiSelect in select.c in SQLite 3.30.1 mishandles certain errors during parsing, as demonstrated by errors from sqlite3WindowRewrite() calls. NOTE: this vulnerability exists because of an incomplete fix for CVE-2019-19880.

Remediation

References

CVE-2019-19926

Related Vulnerabilities

WordPress 5.3.x Multiple Vulnerabilities (5.3 - 5.3.4)

Django Improper Validation of Specified Quantity in Input Vulnerability (CVE-2023-41164)

WordPress Plugin LeaderBoard Cross-Site Request Forgery (1.1.1)

Apache Tomcat CVE-2016-8735 Vulnerability (CVE-2016-8735)

WordPress Plugin Essential Blocks Pro Multiple PHP Object Injection Vulnerabilities (1.1.0)

Severity

High

Classification

CVE-2019-19926 CWE-476 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Tags

Missing Update Known Vulnerabilities