CVE-2019-5018

Published: May 10, 2019Modified: Nov 21, 2024

8.1

Vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 2.2 / Impact: 5.9

Source: NVD

Description

An exploitable use after free vulnerability exists in the window function functionality of Sqlite3 3.26.0. A specially crafted SQL command can cause a use after free vulnerability, potentially resulting in remote code execution. An attacker can send a malicious SQL command to trigger this vulnerability.

Affected (6)

Products: Sqlite: Sqlite · Canonical: Ubuntu Linux

1 product

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Sqlite Sqlite	Version 3.26.0

Configuration B

5 vulnerable

Vulnerable Software	Affected Versions
Canonical Ubuntu Linux	Version 12.04
Canonical Ubuntu Linux	Version 16.04
Canonical Ubuntu Linux	Version 18.04
Canonical Ubuntu Linux	Version 19.04
Canonical Ubuntu Linux	Version 19.10

Related CWEs

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

References (12)

http://packetstormsecurity.com/files/152809/Sqlite3-Window-Function-Remote-Code-Execution.html

Source: talos-cna@cisco.com

Third Party AdvisoryVDB Entry

http://www.securityfocus.com/bid/108294

Source: talos-cna@cisco.com

Broken Link

https://security.gentoo.org/glsa/201908-09

Source: talos-cna@cisco.com

Third Party Advisory

https://security.netapp.com/advisory/ntap-20190521-0001/

Source: talos-cna@cisco.com

Third Party Advisory

https://talosintelligence.com/vulnerability_reports/TALOS-2019-0777

Source: talos-cna@cisco.com

ExploitThird Party Advisory

https://usn.ubuntu.com/4205-1/

Source: talos-cna@cisco.com

Third Party Advisory

http://packetstormsecurity.com/files/152809/Sqlite3-Window-Function-Remote-Code-Execution.html

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

http://www.securityfocus.com/bid/108294

Source: af854a3a-2127-422b-91ae-364da2661108

Broken Link

https://security.gentoo.org/glsa/201908-09

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://security.netapp.com/advisory/ntap-20190521-0001/

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://talosintelligence.com/vulnerability_reports/TALOS-2019-0777

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party Advisory

https://usn.ubuntu.com/4205-1/

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

Timeline

No history available yet.