CVE-2021-20227 in SQLite and Oracle Products
Published on March 23, 2021

A flaw was found in SQLite's SELECT query functionality (src/select.c). This flaw allows an attacker who is capable of running SQL queries locally on the SQLite database to cause a denial of service or possible code execution by triggering a use-after-free. The highest threat from this vulnerability is to system availability.

Vendor Advisory Vendor Advisory NVD

Weakness Type

What is a Dangling pointer Vulnerability?

Referencing memory after it has been freed can cause a program to crash, use unexpected values, or execute code.

CVE-2021-20227 has been classified to as a Dangling pointer vulnerability or weakness.

Products Associated with CVE-2021-20227

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2021-20227 are published in these products:

SQLite

Oracle Outside In Technology

Oracle Communications Network Charging Control

Enterprise Manager Oracle Database

Oracle Jd Edwards Enterpriseone Tools

Oracle Mysql Workbench

Oracle Zfs Storage Appliance Kit

Exploit Probability

EPSS

0.21%

Percentile

43.39%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2021-20227 in SQLite and Oracle ProductsPublished on March 23, 2021

Weakness Type

What is a Dangling pointer Vulnerability?

Products Associated with CVE-2021-20227

Exploit Probability

CVE-2021-20227 in SQLite and Oracle Products
Published on March 23, 2021