Lucene search
Veracode Vulnerability DatabaseVERACODE:38780HistoryJan 05, 2023 - 2:53 p.m.
Security Restrictions Bypass
2023-01-0514:53:57
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
16
sqlite
security bypass
azprohibitedfunctions
udf functions
writefile
software
0.001 Low
EPSS
Percentile
23.8%
sqlite is vulnerable to security restrictions bypass. When relying on --safe for execution of an untrusted CLI script, it does not properly implement the azProhibitedFunctions protection mechanism, and instead allows UDF functions such as WRITEFILE.
| CPE | Name | Operator | Version |
|---|---|---|---|
| sqlite3:sid | eq | 3.33.0-1 | |
| sqlite3:sid | eq | 3.33.0-1 |
Related
debiancve
debiancve
CVE-2022-46908
2022-12-12 06:15:10
redhatcve
redhatcve
CVE-2022-46908
2022-12-13 09:35:22
mageia
mageia
Updated sqlite3 packages fix security vulnerability
2023-03-19 01:16:28
prion
prion
Design/Logic Flaw
2022-12-12 06:15:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2022:4603-1)
2022-12-22 00:00:00
Mageia: Security Advisory (MGASA-2023-0094)
2023-03-28 00:00:00
SUSE: Security Advisory (SUSE-SU-2023:1295-1)
2023-06-30 00:00:00
alpinelinux
alpinelinux
CVE-2022-46908
2022-12-12 06:15:00
nessus
nessus
EulerOS 2.0 SP11 : sqlite (EulerOS-SA-2023-1578)
2023-03-23 00:00:00
EulerOS Virtualization 2.11.1 : sqlite (EulerOS-SA-2023-2052)
2023-06-07 00:00:00
SUSE SLES12 Security Update : sqlite3 (SUSE-SU-2022:4603-1)
2022-12-22 00:00:00
cbl_mariner
cbl_mariner
CVE-2022-46908 affecting package sqlite for versions less than 3.39.2-2
2022-12-19 20:12:39
CVE-2022-46908 affecting package sqlite 3.34.1-2
2024-07-05 03:08:34
cvelist
cvelist
CVE-2022-46908
2022-12-12 00:00:00
ubuntucve
ubuntucve
CVE-2022-46908
2022-12-12 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2023-2266
2023-10-22 05:45:26
wolfi
wolfi
CVE-2022-46908 vulnerabilities
2024-01-31 01:47:34
osv
osv
BIT-sqlite-2022-46908
2024-03-06 11:05:50
sqlite3 vulnerabilities
2024-01-03 18:09:00
sqlite
sqlite
SQLite report about CVE-2022-46908
2022-01-01 00:00:00
cgr
cgr
CVE-2022-46908 vulnerabilities
2024-01-30 23:18:10
cve
cve
CVE-2022-46908
2022-12-12 06:15:10
f5
f5
K000132492 : SQLite vulnerability CVE-2022-46908
2023-02-10 00:00:00
nvd
nvd
CVE-2022-46908
2022-12-12 06:15:10
gentoo
gentoo
SQLite: Multiple Vulnerabilities
2023-11-24 00:00:00
ubuntu
ubuntu
SQLite vulnerabilities
2024-01-03 00:00:00
photon
photon
Critical Photon OS Security Update - PHSA-2022-0300
2022-12-16 00:00:00
Important Photon OS Security Update - PHSA-2022-4.0-0300
2022-12-16 00:00:00
Critical Photon OS Security Update - PHSA-2023-4.0-0428
2023-07-15 00:00:00
cloudfoundry
cloudfoundry
USN-6566-1: SQLite vulnerabilities | Cloud Foundry
2024-02-29 00:00:00
ibm
ibm
ics
ics
Siemens Telecontrol Server Basic
2024-04-11 12:00:00
Siemens SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP V3.1
2023-12-14 12:00:00
hp
hp
HP ThinPro 8.0 SP 9 Security Updates
2024-06-17 00:00:00
HP ThinPro 8.1 SP 2 Security Updates
2024-04-12 00:00:00
tenable
tenable
[R1] Nessus Network Monitor 6.2.2 Fixes Multiple Vulnerabilities
2023-06-29 10:45:47
oracle
oracle
Oracle Critical Patch Update Advisory - January 2024
2024-01-16 00:00:00
Oracle Critical Patch Update Advisory - October 2023
2023-10-17 00:00:00
Oracle Critical Patch Update Advisory - April 2023
2023-04-18 00:00:00
avleonov
avleonov