Description

selectExpander in select.c in SQLite 3.30.1 proceeds with WITH stack unwinding even after a parsing error.

Remediation

References

CVE-2019-20218

Related Vulnerabilities

Magento Insufficient Verification of Data Authenticity Vulnerability (CVE-2019-8124)

Magento Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2019-7942)

WordPress 3.4 Multiple Vulnerabilities (3.4)

ownCloud Improper Authentication Vulnerability (CVE-2012-4392)

WordPress Plugin Helios Solutions Brand Logo Slider Arbitrary File Upload (2.1)

Severity

High

Classification

CVE-2019-20218 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Tags

Missing Update Known Vulnerabilities