Description ext/fts3/fts3_snippet.c in SQLite before 3.32.0 has a NULL pointer dereference via a crafted matchinfo() query. Remediation References CVE-2020-13632 Related Vulnerabilities Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-26035) WordPress Plugin Ultimate Member-User Profile, Registration, Login, Member Directory, Content Restriction & Membership Unspecified Vulnerability (2.0.40) WordPress Plugin Paid Memberships Pro-Restrict Member Access to Content, Courses, Communities-Free or Paid Subscriptions SQL Injection (2.3.2) Liferay DXP Insecure Default Initialization of Resource Vulnerability (CVE-2023-33949) MySQL CVE-2024-21209 Vulnerability (CVE-2024-21209) Severity Medium Classification CVE-2020-13632 CWE-476 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Tags Missing Update Known Vulnerabilities