CVE-2023-7104

A vulnerability was found in SQLite SQLite3 up to 3.43.0 and classified as critical. This issue affects the function sessionReadRecord of the file ext/session/sqlite3session.c of the component make alltest Handler. The manipulation leads to heap-based buffer overflow. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-248999.

Open

LOW (3.0)

System detected CVE-2023-7104 with a risk of 2.75
main
System created a ticket for CVE-2023-7104
main
Everything after this entry will be synced with the external system. The ticket can be found at https://github.com/l3montree-dev/devguard-action/issues/124
S
Sebastian Kawelke updated the risk assessment from 2.75 to 3.05
attesting
Confidentiality Requirement updated: low -> high
System fixed CVE-2023-7104
attesting
System detected CVE-2023-7104 with a risk of 3.05
attesting

Add a comment

Last calculated at:

Affected component

debian/sqlite3

Installed version:

3.40.1

Fixed in:

no patch available

Show in dependency graph

🛡️ DevGuard
Group
/🧩 DevGuard Action
Repository

CVE-2023-7104

Add a comment

Affected component

Management decisions across the organization