CVE-2020-35525

sqlite: Null pointer derreference in src/select.c

Severity Score

7.5

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

In SQlite 3.31.1, a potential null pointer derreference was found in the INTERSEC query processing.

En SQlite versión 3.31.1, se encontró una potencial desreferencia de puntero null en el procesamiento de consultas INTERSEC

A NULL pointer dereference flaw was found in select.c of SQLite. An out-of-memory error occurs while an early out on the INTERSECT query is processing. This flaw allows an attacker to execute a potential NULL pointer dereference.

*Credits: N/A

CVSS Scores

NISTv3.1 7.5

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2020-12-17 CVE Reserved
2022-09-01 CVE Published
2024-03-24 EPSS Updated
2024-08-04 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-476: NULL Pointer Dereference

CAPEC

References (4)

URL	Tag	Source
https://security.netapp.com/advisory/ntap-20230706-0007

URL	Date	SRC

URL	Date	SRC
https://www.sqlite.org/src/info/a67cf5b7d37d5b14	2023-07-06

URL	Date	SRC
https://access.redhat.com/security/cve/CVE-2020-35525	2022-10-25
https://bugzilla.redhat.com/show_bug.cgi?id=2122324	2022-10-25

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Sqlite Search vendor "Sqlite"		Sqlite Search vendor "Sqlite" for product "Sqlite"				3.31.1 Search vendor "Sqlite" for product "Sqlite" and version "3.31.1"		-		Affected