Description

A heap use-after-free issue has been identified in SQLite in the jsonParseAddNodeArray() function in sqlite3.c. This flaw allows a local attacker to leverage a victim to pass specially crafted malicious input to the application, potentially causing a crash and leading to a denial of service.

Remediation

References

CVE-2024-0232

Related Vulnerabilities

WordPress Plugin The Events Calendar Open Redirect (4.1.1)

WordPress Plugin Easy PayPal Buy Now Button Multiple Vulnerabilities (1.7.2)

OpenSSL Cryptographic Issues Vulnerability (CVE-2009-2409)

WordPress Plugin LBstopattack Cross-Site Request Forgery (1.1.2)

Envoy Proxy Excessive Iteration Vulnerability (CVE-2021-39204)

Severity

Medium

Classification

CVE-2024-0232 CWE-416 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Tags

Missing Update Known Vulnerabilities