CVE-2020-13871 vulnerability in SQLite and Other Products
Published on June 6, 2020

SQLite 3.32.2 has a use-after-free in resetAccumulator in select.c because the parse tree rewrite for window functions is too late.

Vendor Advisory Vendor Advisory NVD

Products Associated with CVE-2020-13871

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2020-13871 are published in these products:

SQLite

Fedora Project Fedora

Debian Linux

Oracle Hyperion Infrastructure Technology

Oracle Enterprise Manager Ops Center

Oracle Communications Network Charging Control

Oracle Zfs Storage Appliance Kit

Oracle Communications Messaging Server

Oracle Mysql Workbench

Siemens Sinec Infrastructure Network Services

NetApp Cloud Backup

NetApp Ontap Select Deploy Administration Utility

Exploit Probability

EPSS

2.44%

Percentile

84.88%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2020-13871 vulnerability in SQLite and Other ProductsPublished on June 6, 2020

Products Associated with CVE-2020-13871

Exploit Probability

CVE-2020-13871 vulnerability in SQLite and Other Products
Published on June 6, 2020